avra
1 - 10 employees
We created avra with a clear goal - to empower growth stage founders with the right foundation required to scale their company post Series A.
Senior Security Engineer
Job not on LinkedIn
🔥 1 minute ago
🗣️🇧🇷🇵🇹 Portuguese Required
📊 Check your resume score for this job
Improve your chances of getting an interview by checking your resume score before you apply.
avra
1 - 10 employees
We created avra with a clear goal - to empower growth stage founders with the right foundation required to scale their company post Series A.
📋 Description
• Develop and implement a strategic vision for information security aligned with business objectives, aimed at continuously improving the area's processes and controls. • Manage contracts, assets and services related to information security, ensuring their optimal efficiency. • Define information security standards and policies to protect information assets and support business continuity. • Ensure regulatory compliance applicable to the company and adherence to industry best practices. • Collaborate with technology teams to define and implement effective security integration strategies across the development lifecycle, from design through to operation. • Analyze and address information security incidents, map threats and vulnerabilities, and develop projects to prevent or remediate them. • Lead risk management, threat modeling and impact assessments for new products, features and partnerships. • Lead the training and enablement program to build a strong security culture across the company. • Provide support for internal and external audits. • Evaluate and monitor security KPIs, keeping leadership informed of the information security program's maturity. • Respond to requests and assist in providing the company's ISMS information to clients and other stakeholders as needed.
🎯 Requirements
• More than 5 years of experience leading information security projects, preferably in technology companies and startups. • Strategic mindset, data- and risk-oriented with a focus on business impact, risk management and a pragmatic approach. • Experience conducting ISO 27001 assessments. • Strong knowledge of cloud security, particularly GCP and AWS. • Knowledge of information security standards, frameworks and best practices, such as application security testing (AST), NIST, CIS, ISO 27001 and OWASP. • Experience in secure development and knowledge of security engineering. • Knowledge of DevSecOps best practices and methodologies. • Knowledge of software development / coding. • Experience operating in critical scenarios and supporting regulatory compliance (e.g., LGPD / ANPD).
🏖️ Benefits
• Health insurance • Paid leave • Training and professional development
Apply NowSimilar Jobs
🔥 13 hours ago
Cybersecurity Engineer enhancing the security of TOTVS products by validating vulnerabilities and conducting security research. Focused on risk identification and mitigation for product security.
🗣️🇧🇷🇵🇹 Portuguese Required
🔥 23 hours ago
Professional in Information Security managing the execution of cybersecurity projects for corporate clients. Engaging in structured security operations and incident response tasks.
🗣️🇧🇷🇵🇹 Portuguese Required
🕒 Yesterday
Security Products Services Engineer implementing and supporting security solutions at Rimini Street. Collaborating with clients' IT teams and ensuring successful deployment and integration of security products.
AWS
Azure
Cloud
Google Cloud Platform
🕒 Yesterday
Implement and support Rimini Street's security solutions in collaboration with client IT teams. Responsible for troubleshooting and documenting security product configurations.
🕒 Yesterday
Safety Technician in SGS ensuring workplace safety and compliance with regulations in São Paulo. Focus on electrical transmission lines and substations.
🗣️🇧🇷🇵🇹 Portuguese Required
