Engenheiro (a) de Segurança Sênior

We are looking for a Security Engineer to design implement and continuously improve security controls across applications infrastructure and cloud this role you will work closely with engineering DevOps architecture and risk teams to strengthen security posture reduce risk and enable secure scalable product delivery through automation and bestpractice security engineering.

Your key responsibilities

• Design implement and maintain security controls across application infrastructure and cloud platforms using security engineering principles automation and enterprise standards.
• Integrate security into development and DevOps workflows by implementing DevSecOps tooling promoting secure coding practices and ensuring security is embedded throughout the delivery lifecycle.
• Identify assess and prioritize security vulnerabilities coordinating scanning analysis and remediation efforts with engineering and operations teams.
• Monitor security events investigate threats and participate in incident response applying detection analysis and containment procedures to minimize impact.
• Act as a trusted security advisor by guiding architectural decisions conducting threat modeling and influencing secure design across teams.
• Continuously enhance security maturity by developing automation refining security standards and contributing to documentation and security frameworks.

Qualifications :

What we expect from you

• Bachelors degree in Computer Science Engineering Cybersecurity or a related technical field (or equivalent experience).
• Experience with security engineering across applications infrastructure cloud and data environments.
• Knowledge of SSDLC and DevSecOps practices.
• Experience with cloud security architecture and controls (AWS Azure GCP).
• Strong understanding of IAM secrets management and key management.
• Experience with infrastructure and container security.
• Background in vulnerability management and remediation workflows.
• Experience with threat modeling and security risk assessments.
• Knowledge of security monitoring logging and incident response processes.
• Scripting and automation skills (Python Bash Terraform or similar).
• Familiarity with security frameworks and standards such as ISO 27001 NIST OWASP.
• Strong communication skills and the ability to influence stakeholders.
• Advanced English and availability to work hybrid in São Carlos/SP.

Nice to have

• Securityrelated certifications such as CISSP CISM CCSP AWS/GCP Security.
• Experience developing internal security tools or automation.
• Cloudnative security engineering expertise.
• Contributions to security programs frameworks or incident response improvements.

Additional Information :

At Serasa Experian we believe that diversity is essential for a healthier and more innovative work environment where everyone can share experiences and express their ideas. Thats why we promote several initiatives to support inclusive recruitment and the professional development of our people.

We also have our affinity groups created to empower and support individuals from underrepresented groups: ExperianPride (LGBTQIAPN community) Ubuntu (racial equity) Women in Experian (gender equity) Aspire (people with disabilities) and Connecting Generations (generations).

Come be part of this transformation!

Experian Careers - Creating a better tomorrow together

Find out what its like to work for Experian by clicking here

Remote Work :

No

Employment Type :

Full-time