Senior Security Engineer – Product Security

🔥 4 minutes ago

🗣️🇧🇷🇵🇹 Portuguese Required

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Loft

Loft

1001 - 5000 employees

Founded 2018

🏠 Real Estate

💸 Finance

🏪 Marketplace

Real Estate • Finance • Marketplace

Loft is a company specializing in solutions for real estate, providing innovative commercial, technological, and financial solutions across Brazil. It operates as a platform for buying and selling apartments and houses in major Brazilian cities like São Paulo, Rio de Janeiro, and Porto Alegre. Loft offers real estate evaluation, sales management, rental administration, and financial solutions such as rental guarantees and property financing. Their services are tailored for both individual buyers and sellers as well as partner real estate agencies, enhancing the real estate transaction experience with digital and efficient processes. Loft is committed to making the real estate buying, selling, and financing processes seamless and accessible to all users through their digital platform and mobile app.

📋 Description

• Lead Product Security and Cloud Security initiatives from design through operation • Influence architecture and product decisions, embedding security from development through production • Protect applications, APIs, and AWS environments, balancing security, performance, and availability • Proactively identify and mitigate risks, prioritizing automation and scalability • Serve as a technical reference for engineering teams, promoting best practices and reducing friction in the SDLC • Continuously evolve the security posture for cloud, applications, and generative AI • Define and operate protection strategies for applications and APIs using WAF/WAAP (preferably Azion) • Lead API security efforts, mitigating risks described in the OWASP API Security Top 10 • Improve AWS security posture using CSPM/CNAPP (Wiz or similar), Security Hub, GuardDuty, Inspector, and other native services • Develop automations for vulnerability remediation and security processes • Integrate security into the SDLC through threat modeling, security reviews, and AppSec practices • Define controls for the safe use of AI in engineering and products • Support incident response, technical documentation, and risk indicators

🎯 Requirements

• Senior experience in Product Security, Cloud Security, or Application Security • Strong knowledge of AWS and its main security services (Security Hub, GuardDuty, Inspector, Config, Detective) • Experience with CSPM/CNAPP, preferably Wiz • Hands-on experience with WAF/WAAP and API protection (OWASP API Security Top 10) • Solid knowledge of AppSec, SDLC, threat modeling, and SAST, DAST, and SCA tools • Experience with GitHub, CI/CD pipelines, and automation using Python or an equivalent language

🏖️ Benefits

• Caju - More flexibility to use your benefits (Meal, Grocery, Mobility, Health, Home Office, Culture, and Education) • Health insurance • Dental insurance • Life insurance • Wellhub - Access to gyms across Brazil • Wellz - Mental health platform • Parental leave - for parents • Guapeco - Discounted pet health plan

Apply Now

Similar Jobs

🔥 6 hours ago

OpenCircle

51 - 200

Google Cloud Security Specialist focusing on global cybersecurity transformation projects. Leading security architecture, threat detection, and incident response initiatives.

🗣️🇧🇷🇵🇹 Portuguese Required

Cloud

🔥 11 hours ago

Capco

1001 - 5000

💸 Finance

⚡ Energy

Technical Safety Technician ensuring workplace safety in the Oil & Gas sector at Capco. Specializing in training programs, audits, and emergency management.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 Yesterday

TOPMIND

501 - 1000

🤖 Artificial Intelligence

🤝 B2B

🏢 Enterprise

Especialista SAP GRC/SAP Security no projeto de governança de acessos e compliance SAP. Atuando de forma remota e em um projeto inicial de 6 meses.

🗣️🇧🇷🇵🇹 Portuguese Required

🕒 4 days ago

Fraga Assessoria Coaching & Headhunter

2 - 10

🎯 Recruiter

🤝 B2B

📚 Education

Senior Account Manager focusing on new business development in technology and information security services. Driving B2B consultative sales processes while achieving aggressive commercial goals.

🗣️🇧🇷🇵🇹 Portuguese Required

Cloud

Cyber Security

🕒 4 days ago

ALTASNET

51 - 200

🔒 Cybersecurity

🏢 Enterprise

🤝 B2B

Cloud Security Consultant improving cloud architecture and security standards for clients. Collaborating with internal teams in cloud, DevOps, and security to provide technical support and assessments.

🗣️🇧🇷🇵🇹 Portuguese Required

AWS

Azure

Cloud