About the role

Security Architect developing and maintaining information security frameworks at Porto. Ensuring data protection and security compliance.

Responsibilities

Develop and implement reference security architectures for cloud environments (AWS, Azure, GCP), ensuring the protection of data and applications.
Integrate security practices and tools into development pipelines (DevSecOps), automating validations and vulnerability analyses (SAST, DAST, SCA).
Conduct risk assessments and threat modeling for cloud-native applications, microservices and infrastructure as code (IaC).
Define and implement security controls for technologies such as containers (Docker, Kubernetes) and serverless computing.
Collaborate directly with development, infrastructure and SRE teams to promote a security-by-design culture and ensure adoption of security standards.
Evaluate, test and recommend new security technologies and solutions with a focus on Cloud Security Posture Management (CSPM), SASE and Zero Trust Network Access (ZTNA).
Create and maintain technical documentation, such as diagrams, guides and security procedures for Cloud and DevOps environments.
Act as a technical consultant on projects, ensuring that proposed solutions are aligned with the company’s security policies and best practices.

Bachelor’s degree completed (Preferred fields: Computer Science, Computer Engineering, Information Security, Information Systems or related areas).
Solid experience in Security Architecture or Cybersecurity, with hands-on focus on cloud environments and DevSecOps practices, preferably in large organizations.
Deep knowledge of cloud security (AWS, Azure or GCP), including identity and access management (IAM), network security, encryption and service configuration.
Experience implementing DevSecOps pipelines, Infrastructure as Code and security code analysis tools.
Knowledge of Infrastructure as Code (IaC) security, containers and orchestration platforms (Kubernetes).
Familiarity with architecture frameworks (SABSA, TOGAF) and threat modeling.
Strong understanding of architectures such as Zero Trust (ZTNA) and SASE, among others.
Security and/or cloud architecture certifications (AWS/Azure/GCP Security Specialty) or certifications such as CISSP, CISM or CCSP.
Knowledge of security solutions specific to Porto’s portfolio and experience in the financial or insurance sector.

Flexible Meal and Food Vouchers.
Health Insurance.
Dental Plan.
Wellhub and TotalPass.
Bio Ritmo gym exclusive for employees at the Headquarters Complex.
Profit Sharing (PLR).
Equity Program: "Porto em Ação" — complementary to PLR until 2025.
Sand courts and multi-sports courts at the Headquarters Complex.
Transportation voucher.
Van shuttle services available at the main access stations to Porto (Luz, Barra Funda, Santa Cecília and Júlio Prestes).
Extended Parental Leave: up to 40 days for all family configurations.
Extended Maternity Leave of 6 months.
On-site Medical Clinic with specialties at the Headquarters and Barra Funda.
Childcare or nanny allowance.
Life Insurance.
Private Pension Plan - PortoPrev.
Discounts on Products and Services.
Tuition assistance: reimbursement for undergraduate, postgraduate or MBA programs.
Monthly race subsidies for major road races in São Paulo.
Reimbursement for language courses (English or Spanish).
Porto Theater: exclusive sessions for employees.
Library.
Rest area at the Headquarters Complex.
Game room at the Headquarters Complex.
Massage and podiatry services at the Headquarters Complex.
Work location: Campos Elíseos (We operate hybrid models, which will be discussed during the selection process).