[Ambev Global Tech] Offensive Security Manager (Red Team)

Vaga não está no LinkedIn

Outubro 11

Candidatar-se

Receber Emails com Vagas Similares

Ambev Tech

SiteLinkedInTodas as Vagas

B2B • eCommerce • Food & Beverage

A Ambev Tech é a divisão de tecnologia da Ambev, focada em alavancar tecnologias avançadas para aprimorar as operações e as experiências dos clientes no setor de bebidas. Ao integrar soluções digitais e processos inovadores, a Ambev Tech busca impulsionar a eficiência e o crescimento em todo o amplo portfólio de produtos e serviços da Ambev.

1001 - 5000 funcionários

🤝 B2B

🛍️ Comércio Eletrônico

Descrição

• Plan and execute Red Team campaigns (internal and external) aligned with MITRE ATT&CK and realistic adversary profiles. • Conduct Purple Team exercises in partnership with SOC/IR, validating telemetry, adjusting detections, and measuring defensive effectiveness. • Perform formal penetration testing on web applications, APIs, mobile apps, networks, cloud environments (AWS/Azure/GCP), and containers — from scoping to delivering professional reports. • Manage a team of 3 junior pentesters: distribute activities, review deliverables, support technical development, and provide continuous feedback. • Validate technical reports produced by the team, ensuring prioritization of risks, technical evidence, and mitigation recommendations for technical and executive areas. • Maintain pentest artifacts: authenticated test plans, exploration PoCs, verification steps, and retest scripts. • Ensure that all tests follow rules of engagement, legal limits and ethical standards. • Support in the definition of standards, Red/Purple/Pentest playbooks and the continuous evolution of the offensive security program.

🎯 Requisitos

• Team management: experience in leading, motivating and developing junior professionals, ensuring deliveries within deadlines and quality standards. • Collaborative: ease of working with SOC, IR, engineering, product, legal and compliance. • Customer/business oriented: translates technical problems into risk impact and priorities. • Mentor: experience in training junior members, conducting labs and workshops. • Integrity: strong OPSEC discipline, ethical handling of evidence, compliance with rules of engagement. • 5+ years in offensive security, with at least 3+ years in Red Team/adversary emulation and formal penetration testing. • Proven experience in Purple Team: execution of joint exercises, adjustment of detections, collaboration with SOC/IR. • Strong experience in pentesting web applications/APIs (OWASP Top 10), authentication/authorization failures, mobile, network and infrastructure testing. • Good communication in English (written and verbal), with the ability to interact with global stakeholders and produce/validate reports in English. • Previous experience in leading or managing technical teams is highly desirable. • Applied knowledge in MITRE ATT&CK, emulation methodologies and Purple Team metrics.

🏖️ Benefícios

• Vale refeição ou alimentação ifood; • Vale transporte; • Bônus; • Plano de saúde; • Convênio odontológico; • Convênio Farmácia; • Seguro de vida; • Instituto Ambev de Previdência Privada; • Auxílio Material Escolar; • Cesta de Natal e Kit Congelado; • Brinquedos de Natal; • Empresa cidadã (licença maternidade e paternidade) e presente do bebê; • Desconto mensal em produtos AMBEV; • Banco de horas; • Wellhub (Gympass); • Fretado; • Abono anual referente a um salário.