Grupo QuintoAndar - Staff Security Engineer - Platform Security

About the role

The Platform Security team's mission is to make security a native engineering capability. We are responsible for defining standards and building paved roads, guardrails, and scalable controls so that software, APIs, infrastructure, cloud environments, data platforms, and AI workloads are secure by design and remain aligned with the company's security standards over time. In practice, this means turning security requirements and risks into reusable mechanisms, opinionated standards, and automations that reduce reliance on manual controls and make the secure path the default path for engineering. We are looking for a Staff Security Engineer to play a key technical role in the evolution of our Platform Security discipline. This role is for someone who operates well in complex, ambiguous, and systemic problems and can solve them through engineering. You will work closely with SRE, Data, AI, and Software Engineering teams, turning security risks and requirements into real platform capabilities that can be adopted at scale across multiple teams and products. We are looking for someone with strong technical depth, autonomy, excellent judgment, and a proven track record of building durable solutions to structural security problems. More than operating existing controls, we expect someone who can define standards, build platform-native mechanisms, and consistently raise the security maturity bar across engineering.

Responsibilities

• Security Strategy and Architecture
• Define and refine the platform's security strategy, aligning it with business objectives and compliance requirements.
• Design and lead the practical implementation of resilient security architectures for critical systems in cloud-native environments.
• Establish security engineering standards through code, particularly for infrastructure as code (Terraform), containers, CI/CD pipelines, gates, and guardrails.
• Conduct threat modeling and security design reviews for systems and new platform features.
• Development and Automation
• Develop and maintain security platforms, automation tools, libraries, and reusable internal frameworks for the entire organization.
• Integrate security throughout the entire development cycle (shift-left and Security by Default), implementing secure CI/CD pipelines with automated testing (SAST, DAST, SCA) and remediation tools.
• Use technologies such as Terraform, Go, and Python to enhance security maturity by developing and deploying tools and platforms, effectively and scalably ensuring multi-layered security (software development, applications, and infrastructure).
• Operations, Governance, and Technical Leadership
• Act as a technical security expert for the engineering teams, mentoring other engineers on secure development practices and DevSecOps.
• Actively participate in incident response and security post-mortems.
• Collaborate with SRE, Software Engineering, and Product teams to influence architectural decisions, taking into account the trade-offs between security, performance, and usability.
• Essential Qualifications
• Over 6 years of experience in software development and information security, with a focus on platforms.
• Solid experience with cloud providers (AWS, GCP, or Azure) and their respective security services.
• Proven proficiency in programming languages such as Python or Go for automation and tool development. Java is a plus.
• Proficiency in Infrastructure as Code (IaC), particularly with Terraform.
• Proficiency in DevSecOps practices and h

Benefits

Additional Information

About Grupo QuintoAndar We are Grupo QuintoAndar, the largest real estate ecosystem in Latin America. Guided by a shared purpose of helping people love where they live, we have a diversified portfolio of brands and solutions across different countries in Latin America, covering all phases of the housing journey. We also have a Technology Hub in Portugal. We develop technology and innovation to transform and enhance the overall living experience. With the support of a world-class team of investors and advisors, including Kaszek, Qualcomm, General Atlantic, and SoftBank, Grupo QuintoAndar is currently valued at over USD 5.1 billion and continues to grow year over year. Here, you will work with top professionals in the market, in an environment that breathes innovation, collaboration, and high performance. To learn more about our story, visit: https://grupoquintoandar.com/pt/ . Location & Remote Work for technology and remote-first roles Our technology team operates under a "remote-first" model, which means we work from home and can live anywhere in Brazil. We also offer the option of working from our São Paulo offices or partner coworking spaces, up to twice a week. Hiring Process Stages The stages of our hiring processes aim to assess your experiences and allow you to meet our teams and explore career opportunities. They are structured as follows: People interview Tech screening Tech interview 1 Tech interview 2 Hiring Comittee

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at quintoandar? Share your experience