Security Architect - Mid-level

Job not on LinkedIn

November 25

Apply Now

Receive Emails with Similar Jobs

Sicredi

WebsiteLinkedInAll Job Openings

Banking • Finance • Cooperative

Sicredi is a cooperative financial institution based in Brazil that offers a wide range of financial services, including personal and business banking, investments, insurance, and credit solutions. With over 9 million members, Sicredi emphasizes community development by reinvesting resources locally and providing personalized services to its clients. The institution operates more than 2,800 branches nationwide, focusing on a humanized approach to finance and supporting the agribusiness sector alongside individuals and businesses.

10,000+ employees

🏦 Banking

💸 Finance

📋 Description

• Oversee the secure development lifecycle within business squads. • Technically validate pentest reports by analyzing evidence, severity and discussing findings with the responsible teams. • Conduct technical assessments of internal and external APIs, focusing on OWASP API Top 10 controls. • Support procurement processes for tools and systems by performing security evaluations based on the OWASP ASVS and MASVS frameworks. • Ensure that minimum security requirements are present in contracted solutions. • Collaborate with business areas, technology teams, and vendors to ensure security requirements are met from procurement through operation.

🎯 Requirements

• Experience in Information Security. • Strong knowledge of cybersecurity standards, frameworks and best practices. • Experience with vulnerability management processes, threat modeling, secure architecture and cyber risk management. • Knowledge of security architecture/solutions in public and private clouds. • Prior experience analyzing pentest reports and technical understanding of vulnerabilities. • Solid knowledge of API security and the OWASP Top 10 for APIs. • Familiarity with the OWASP ASVS and MASVS frameworks. • Good technical communication and writing skills. • Experience in financial or regulated environments is desirable. • Certifications such as OSCP, GIAC, or similar. • Experience with application security testing tools (SAST, DAST, API Security Testing). • Experience with DevSecOps processes or integrating security into CI/CD pipelines.

🏖️ Benefits

• 14th and 15th fixed salaries. • Profit-sharing / performance-based participation (depending on seniority). • Health and dental plans with no copayment. • Well-being programs through Wellhub (formerly Gympass): nutrition, psychology, occupational health, massage, running groups and local gym access. • Meal and food allowance with flexibility to split between cards (VA/VR), no copayment. • Extended maternity and paternity leave. • Childcare or nanny allowance for children up to 6 years and 11 months. • Allowance for children with disabilities, without age limit. • Life insurance. • Private pension plan up to 7% of salary. • Training platform – Sicredi Aprende, with a variety of courses. • 40-hour workweek — using a time-bank system. • Remote work allowance (except for positions that are 100% on-site).