Product Security Architect at Expedia designing secure architecture for services and APIs. Collaborating with teams to guide secure practices and integrate AI - driven solutions.
About the role
- Intern supporting the construction and strengthening of data protection culture at N5X. Collaborating with the technology team for security practices and monitoring access.
Responsibilities
- Support monitoring of access, permissions and security policies across the platform’s systems and environments (cloud, applications, data).
- Assist in identifying and recording vulnerabilities, security incidents and non-conformities, following established processes.
- Support the review and update of security policies, procedures and documentation (password policies, access control, key management).
- Contribute to access audits and inventories, ensuring the principle of least privilege.
- Research industry best practices, regulations and security frameworks (LGPD, ISO 27001, OWASP) and consolidate findings for the team.
- Support configuration and review of rules in security tools (firewalls, WAF, SIEM, identity controls).
- Assist with internal security awareness: educational materials, announcements and phishing simulations.
- Investigate and document security logs and events, contributing to the creation of alerts and monitoring routines.
Requirements
- Attention to detail and rigor to identify inconsistencies, unauthorized access and anomalous behavior.
- Analytical reasoning and the ability to investigate problems with method and organization.
- Clear written communication (document incidents, procedures and reports accurately and accessibly).
- Organization and a strong sense of responsibility (security requires consistency and constant attention).
- Proactivity to research, learn and propose process and control improvements.
- Interest in understanding how systems work and where they may be vulnerable.
- Curiosity and a genuine interest in information security, privacy and data protection.
- Currently pursuing a degree in Computer Science, Information Systems, Computer Networks or other technology-related fields.
- Basic knowledge of networking (TCP/IP, DNS, HTTP/HTTPS) and operating systems (Linux and/or Windows).
- Advanced English.
- Nice to have: familiarity with security concepts such as the OWASP Top 10, access control, cryptography or LGPD, even if only in an academic context.
- Nice to have: some experience or interest in tools such as Wireshark and Nmap.
Benefits
- Stipend: R$ 2,500.00
- Work model: Hybrid — 3 days in the office per week; participation in in-person team rituals (currently quarterly), in-person meetings with stakeholders and events
- Meal allowance: R$ 43.68 per working day
- Food allowance: R$ 832.00 per month
- Transport allowance: Round-trip coverage for commuting on in-office days with no payroll deduction
- Health plan: SulAmérica with co-payment for the employee and their dependents — children and spouse
- Life insurance: MetLife up to R$ 50,000
- Birthday day off!
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
IT Security Officer overseeing information security for a specific IT sector at Desjardins. Collaborating with cross - sector teams and managing information security risks and vulnerabilities.
Associate, Information Security professional at Santander focusing on Vulnerability Management and network security exposure. Collaborating with teams to enhance security posture and manage technology risks.
IAM Security & Technology Governance person driving IAM technical program with cutting - edge technology to improve security posture at MUFG. Manage IAM requirements, standards, governance and solutions across global implementation.
Senior Analyst in Mastercard's newly created Vocalink Control Office supporting control testing across Security domains. Ensuring a strong control environment and identifying gaps for improvement.
Senior Analyst focusing on Information Security and Compliance at Cirque du Soleil. Engaging in threat analysis and improvement of security tools and processes, within a creative company culture.
Security Architect designing and implementing cybersecurity architectures for UK Defence projects. Collaborating with stakeholders to safeguard client data against cyber threats.
System Security Specialist analyzing risks and security controls for state agencies. Conducting assessments, providing advisory support, and strengthening cybersecurity posture.
Security Data Specialist supporting a large - scale cybersecurity assessment program for State government agencies. Transforming assessment data into actionable insights and enabling data - driven decision - making across stakeholders.
Trainee in Health & Safety supporting environmental and health safety processes at Hikma Pharmaceuticals. Collaborating on waste management and legal documentation while developing practical EHS skills.