Engenheiro de Segurança do Trabalho na Capco, consultoria global no setor de serviços financeiros e energia. Foco em segurança ocupacional, operacional e vigilância sanitária.
About the role
- Cloud Security Engineer focused on enhancing security in a cloud-native fintech platform. Collaborating with teams to integrate security into infrastructure and software development processes.
Responsibilities
- Harden and maintain security across a multi-account AWS environment (IAM, VPC, EKS, RDS, S3)
- Implement and manage cloud security posture monitoring
- Maintain and extend SSO permission sets and Kubernetes RBAC configurations
- Manage network security controls (firewalls, VPN, security groups)
- Drive secrets management, including rotation policies, vault integration, and eliminating hardcoded credentials
- Integrate SAST, DAST, and SCA scanning into CI/CD pipelines
- Implement container image scanning and Kubernetes admission controls
- Add IaC security scanning to the deployment workflow
- Conduct security reviews of infrastructure changes and architecture decisions
- Work with development teams to remediate application vulnerabilities
- Participate in threat modeling for new services and architecture changes.
- Own the vulnerability management lifecycle (scanning, triage, remediation tracking)
- Manage penetration test findings and coordinate fixes with development teams
- Define remediation SLAs and report security posture metrics
- Maintain and improve security monitoring and alerting pipelines
- Manage log aggregation and alert routing for critical events
- Participate in incident response and maintain IR runbooks
Requirements
- 3-5 years of experience in security engineering, DevSecOps, or infrastructure/cloud security
- Strong hands-on AWS experience: IAM, VPC, EKS, CloudTrail, GuardDuty, Security Hub, KMS
- Ability to automate security processes using Python and IaC tools
- Kubernetes experience: RBAC, network policies, pod security, container image security
- Terraform proficiency with ability to read, write, and review IaC
- Experience integrating security tools into CI/CD pipelines (SAST/DAST/SCA)
- Practical vulnerability management experience: scanning, triage, working with developers on remediation
- Scripting skills: Python and Bash
- Familiarity with SIEM platforms (ELK, Splunk, or similar)
- Understanding of OWASP Top 10 and common web application vulnerabilities.
Benefits
- Opportunity to shape the future of fintech solutions within a growing company
- Collaborative, horizontal team structure that values your expertise and ideas
- Continuous learning and development opportunities to enhance your skills and career growth
- Competitive salary and benefits package
- Flexible work arrangements to support work-life balance
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Privacy and Cybersecurity Counsel providing legal advice on privacy laws and cybersecurity regulations for a global financial services firm. Advise on legal frameworks and support compliance initiatives across teams.
Security Guard monitoring premises to prevent theft and violence for Logan Health. Engaging with staff, patients, and visitors while ensuring safety and compliance.
Cybersecurity Associate focusing on identity and access management at PwC. Collaborating on secure access systems and safeguarding sensitive data.
Técnico/a Avanzado de Ciberseguridad en Mapfre gestionando proyectos de seguridad de inversiones. Dirigiendo evaluaciones de riesgos y cumplimiento de normativas de seguridad.
Security Officer providing safety and security for ERIE's employees and physical assets. Responding to emergency situations and enforcing safety protocols in Erie, PA.
Head of Data Protection & Cybersecurity Risk at FIFA ensuring compliance with data protection laws. Leading strategy while managing risks related to data security and privacy.
Operational Security & Public Safety Manager for East West Railway Company. Leading operational security and public safety strategy for a major railway infrastructure project.
Mid - level to senior associate attorney for privacy litigation in a collaborative environment. Join a team focused on groundbreaking privacy issues for marquee tech and retail clients.
Network Security Engineer supporting network security improvement programmes focused on segmentation and vulnerability management in the public sector. Collaborating with architecture and security teams to implement secure controls.