EHS&S Specialist managing compliance and data systems for global animal - health services. Ensuring EHS standards and documentation across North America locations with hybrid work model.
About the role
- Security Architect developing and maintaining information security frameworks at Porto. Ensuring data protection and security compliance.
Responsibilities
- Develop and implement reference security architectures for cloud environments (AWS, Azure, GCP), ensuring the protection of data and applications.
- Integrate security practices and tools into development pipelines (DevSecOps), automating validations and vulnerability analyses (SAST, DAST, SCA).
- Conduct risk assessments and threat modeling for cloud-native applications, microservices and infrastructure as code (IaC).
- Define and implement security controls for technologies such as containers (Docker, Kubernetes) and serverless computing.
- Collaborate directly with development, infrastructure and SRE teams to promote a security-by-design culture and ensure adoption of security standards.
- Evaluate, test and recommend new security technologies and solutions with a focus on Cloud Security Posture Management (CSPM), SASE and Zero Trust Network Access (ZTNA).
- Create and maintain technical documentation, such as diagrams, guides and security procedures for Cloud and DevOps environments.
- Act as a technical consultant on projects, ensuring that proposed solutions are aligned with the company’s security policies and best practices.
Requirements
- Bachelor’s degree completed (Preferred fields: Computer Science, Computer Engineering, Information Security, Information Systems or related areas).
- Solid experience in Security Architecture or Cybersecurity, with hands-on focus on cloud environments and DevSecOps practices, preferably in large organizations.
- Deep knowledge of cloud security (AWS, Azure or GCP), including identity and access management (IAM), network security, encryption and service configuration.
- Experience implementing DevSecOps pipelines, Infrastructure as Code and security code analysis tools.
- Knowledge of Infrastructure as Code (IaC) security, containers and orchestration platforms (Kubernetes).
- Familiarity with architecture frameworks (SABSA, TOGAF) and threat modeling.
- Strong understanding of architectures such as Zero Trust (ZTNA) and SASE, among others.
- Security and/or cloud architecture certifications (AWS/Azure/GCP Security Specialty) or certifications such as CISSP, CISM or CCSP.
- Knowledge of security solutions specific to Porto’s portfolio and experience in the financial or insurance sector.
Benefits
- Flexible Meal and Food Vouchers.
- Health Insurance.
- Dental Plan.
- Wellhub and TotalPass.
- Bio Ritmo gym exclusive for employees at the Headquarters Complex.
- Profit Sharing (PLR).
- Equity Program: "Porto em Ação" — complementary to PLR until 2025.
- Sand courts and multi-sports courts at the Headquarters Complex.
- Transportation voucher.
- Van shuttle services available at the main access stations to Porto (Luz, Barra Funda, Santa Cecília and Júlio Prestes).
- Extended Parental Leave: up to 40 days for all family configurations.
- Extended Maternity Leave of 6 months.
- On-site Medical Clinic with specialties at the Headquarters and Barra Funda.
- Childcare or nanny allowance.
- Life Insurance.
- Private Pension Plan - PortoPrev.
- Discounts on Products and Services.
- Tuition assistance: reimbursement for undergraduate, postgraduate or MBA programs.
- Monthly race subsidies for major road races in São Paulo.
- Reimbursement for language courses (English or Spanish).
- Porto Theater: exclusive sessions for employees.
- Library.
- Rest area at the Headquarters Complex.
- Game room at the Headquarters Complex.
- Massage and podiatry services at the Headquarters Complex.
- Work location: Campos Elíseos (We operate hybrid models, which will be discussed during the selection process).
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Senior Manager, IAM Control Assurance supporting identity and access management compliance within a global financial organization. Collaborating with cross - functional teams for regulatory and audit compliance.
Senior Security Engineer focusing on application security for Relativity software products. Collaborating with teams to implement security best practices and address security vulnerabilities.
Senior Security Analyst supporting Certification and Assurance at Mastercard. Managing certifications and conducting control testing against various security standards and frameworks.
Senior Information Security Engineer designing and maintaining security solutions for Utica National Insurance Group. Collaborating across teams to defend against cyber threats and ensure compliance.
Program Manager driving strategic alignment and overseeing enterprise - wide transformation programs at St Vincent's Health Australia. Leading cross - functional teams and ensuring programs deliver value within scope and timelines.
Cloud Security Architect shaping security architecture for scalable cloud solutions at GRAYOAK. Collaborating with cross - functional teams to ensure secure software development and architecture.
Cloud Security Specialist ensuring the security of customer services and infrastructure in cloud platforms. Implementing monitoring tools and enhancing security policies for clients’ cloud environments.
Information Systems Security Officer for federal programs, managing security and compliance in IT. Assessing risks and delivering training to enhance cybersecurity practices.
Distinguished Engineer for AI & Product Security at Workday, driving security strategy for AI technologies and cloud - native applications. Leading security architecture and complex reviews across critical products.