Product Security Analyst

Job not on LinkedIn

🔥 0 minutes ago

🗣️🇧🇷🇵🇹 Portuguese Required

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Clicksign

Clicksign

201 - 500 employees

Founded 2010

💳 Fintech

⚕️ Healthcare Insurance

👥 HR Tech

💰 $3.2M Venture Round on 2022-12

Fintech • Healthcare Insurance • HR Tech

Clicksign is a leading Brazilian platform for electronic signatures, providing businesses with a secure and legally valid way to sign documents online. With innovative features such as integration via API, automated document generation, and a focus on user-friendly experiences, Clicksign streamlines the signing process, promoting efficiency and compliance in various sectors including finance, healthcare, and human resources. The company prides itself on its security certifications and adherence to legal standards in electronic signatures.

📋 Description

• Assess technical vulnerabilities and propose solutions to improve the security of our platform, working across our stack (Ruby, Go, and PHP) and developing security fixes in AWS/Lambda. • Quickly evaluate requests in the development queue to reduce the AppSec bottleneck and unblock Engineering deliveries. • Actively propose and implement fixes in code, going beyond merely reporting findings. • Conduct threat modeling and apply secure-by-design principles to product initiatives. • Create guardrails, tooling, and automations that make the secure path the default for Engineering teams. • Integrate and tune security tools in the CI/CD pipeline (SAST, SCA, and secret scanning), maintaining low noise and few false positives.

🎯 Requirements

• Experience in software or security engineering delivering production code (ideally Ruby and PHP), including automations in AWS/Lambda. • Background in Application Security/Product Security: threat modeling, secure-by-design, and building guardrails and tooling. • Strong knowledge of CI/CD pipeline security, with calibrated SAST, SCA, and secret scanning. • Knowledge of AWS cloud security as applied to product environments. • Security-related certifications are a plus. • Strong ability to collaborate with Engineering teams, proposing and implementing fixes directly in code rather than only communicating findings. • Ability to communicate in English (written and spoken).

🏖️ Benefits

• 100% remote work. • Culture of trust, focused on results, with plenty of challenge and learning opportunities. • Autonomy and ownership in a collaborative and empathetic environment. • Feedback culture and regular 1:1s with supportive leadership and no micromanagement. • Comprehensive benefits such as meal/food allowance, childcare support, home office allowance, health, education and culture benefits, Gympass, birthday day-off, discounts on therapy and English courses, and other partner perks.

Apply Now

Similar Jobs

🕒 Yesterday

CoE | Centro de Excelência Votorantim

501 - 1000

💸 Finance

🏢 Enterprise

Senior Information Security Analyst in a remote Computer Security Incident Response Team. Leading incident response and threat containment activities for Votorantim's Excellence Center.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 2 days ago

Vitta Corporation

11 - 50

🚀 Aerospace

⚕️ Healthcare Insurance

Analista de Infraestrutura focusing on Security, supporting information security processes at Vitta. Collaborating with multiple teams to enhance organizational security posture.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 5 days ago

SGA TI em Nuvem

11 - 50

🤖 Artificial Intelligence

Seeking a Senior Analyst in Information Security Governance for a firm redefining digital efficiency. Involves critical assessments and risk management in technology environments.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 July 8

Mindworks

51 - 200

🤝 B2B

🔒 Cybersecurity

🏢 Enterprise

Red Team Analyst for offensive security at Mindworks focusing on web application testing and vulnerability analysis. Engaging in strategic security projects to strengthen security measures for large organizations.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 July 8

Cooperativa Central Ailos

1001 - 5000

💸 Finance

👥 B2C

Information Security Analyst III focusing on Cyber Risk Management. Engage in risk identification, tracking, and regulatory compliance for Central Ailos.

🗣️🇧🇷🇵🇹 Portuguese Required