Related skills
aws kubernetes gcp threat modeling sastπ Description
- Lead security strategy for product/app security per OWASP ASVS/NIST/BSIMM.
- Architect DevSecOps pipeline with SAST/DAST/SCA + container scans in CI/CD.
- Drive threat modeling across critical flows to mitigate production risks.
- Design centralized telemetry: logs, WAF, fraud signals to a SIEM.
- Lead evaluation/implementation of security tools (SAST/DAST, SIEM, PAM, API security).
- Mentor 7-8 embedded DevSecOps engineers across product verticals; own MTTD/fraud roadmap.
π― Requirements
- 4+ years in senior security leadership roles.
- SSDLC, threat modeling (STRIDE/PASTA), distributed security architecture.
- SAST/DAST/SCA + container scans (Checkmarx, Burp, Snyk, ZAP).
- SIEM (Elastic, Splunk, Sentinel) & cloud security (AWS/GCP): IAM, VPC.
- Build/scale DevSecOps; CI/CD security; mentor engineers.
- Two languages (Python/Go/Java/JS) for code reviews and tooling.
- ISO 27001, PCI DSS, LGPD/GDPR familiarity; translate to controls; Portuguese/English.
π Benefits
- Flexible benefits program customizable to your needs.
- WELLHUB: Free Gold+ membership with gym access and wellness resources.
- WELLZ: Emotional wellbeing program with therapy sessions.
- Healthcare: health, dental, and life insurance.
- Flexible work: hybrid/remote options with home office reimbursement.
- Paid time off and parental leave policies.
Meet JobCopilot: Your Personal AI Job Hunter
Automatically Apply to Engineering Jobs. Just set your
preferences and Job Copilot will do the rest β finding, filtering, and applying while you focus on what matters.
Help us maintain the quality of jobs posted on Empllo!
Is this position not a remote job?
Let us know!