Senior Product Security Consultant

🔥 7 minutes ago

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

ALTASNET

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 2002

🔒 Cybersecurity

🏢 Enterprise

🤝 B2B

Cybersecurity • Enterprise • B2B

ALTASNET is a Brazilian IT solutions integrator and managed services provider specializing in cybersecurity, enterprise networking, data center and cloud infrastructure, and IT process automation. Founded in 2002, the company serves private and government clients across multiple industries (banking, retail, healthcare, logistics, education) with consultative services, certified specialists, 24×7 support and partnerships with leading global technology vendors. ALTASNET delivers scalable, secure infrastructure and security services for organizations seeking to modernize operations and protect digital assets.

📋 Description

• Participate in architecture and design reviews across the AMI product stack — metering devices, RF/cellular modules, gateways, cloud pipelines and SaaS portals — providing security guidance from the early stages of the development lifecycle. • Perform threat modeling (STRIDE, PASTA) across the AMI architecture, identifying attack surfaces and trust boundaries from the meter to the cloud. • Support firmware security standards and coordinate security testing of metering hardware, including firmware extraction/analysis and review of supply chain components. • Work with Cloud and DevOps teams to embed security controls into Infrastructure as Code (IaC) templates and CI/CD pipelines. • Execute or coordinate SAST, DAST and SCA testing in the CI/CD pipelines of NTG’s utility management applications and consumer portals. • Assess authentication, authorization and API security in multi-tenant SaaS portals intended for utility administrators, end customers and integration partners. • Serve as the primary point of contact between Security & Compliance and Product Development, ensuring requirements are implemented in practice — not just documented — and supporting evidence collection for audits across firmware, cloud and SaaS. • Provide technical support during product security incidents and post-incident reviews, converting findings into architectural improvements or engineering backlog items.

🎯 Requirements

• Bachelor’s degree in Computer Science, Computer Engineering, Electrical Engineering, Information Security or a related field (or equivalent experience). • More than 5 years of experience in product security, application security or embedded/IoT security. • Hands-on experience with SAST, DAST, SCA and manual code review for web applications, APIs or embedded software. • Ability to engage technically with firmware engineers, hardware designers and SaaS developers. • Fluent English - Essential. • Solid knowledge of AWS.

🏖️ Benefits

• Competitive market-aligned salary; • Performance-based bonus; • Health plan - Unipart Flex; • Dental plan - Bradesco; • Flash card - R$55.00 per day; • Day off; • English course - reimbursement modality; • Well-being benefits – Total Pass, Clude and C4Life.