Senior Security Engineer

Responsibilities

• IAM projects to centralize system authentication, guarantee RBAC usage; Modification of existing systems and technologies to meet recommended security best practices.
• Vulnerability Lifecycle assistance: Aid in the implementation and maintenance of vulnerability discovery systems. Evaluate and enrich discovered vulnerabilities, ensuring responsible teams have the necessary guidance to fix them.
• Regional Cloud Infrastructure Hardening: Design and implement security controls for our GCP and AWS footprints in the South America (São Paulo) regions, meeting best practices for network segmentation, IAM, and encryption.
• Brazilian Regulatory & Compliance Alignment: As necessary, handle technical efforts to ensure compliance with local regulations, including LGPD (Lei Geral de Proteção de Dados) and BACEN (Central Bank of Brazil) security requirements.
• Technical Guidance: Help promote a strong security culture within the local Engineering and Product squads, advocating for DevSecOps practices across the Brazilian tech stack with a strong focus on developer experience through security tooling and technical documentation.
• About the Candidate
• You are a seasoned security professional with deep technical expertise and a history of tackling technical projects from end-to-end, delivering tangible results without unnecessarily impacting uptime or performance.
• You have an excellent understanding of cybersecurity fundamentals, while also having a general grasp on important concepts from software and platform engineering.
• You think holistically about security, from low-level network protocols to high level data privacy regulations.
• You communicate effectively in both English and Portuguese, within and outside of security, translating complex security concepts for technical and non-technical stakeholders.
• Experience and Qualifications
• Required:
• 5+ years of experience in security engineering.
• Solid understanding of network security, identity management (IAM), operating systems and other cybersecurity fundamentals.
• Deep technical expertise in GCP, AWS or other cloud providers.
• Knowledge of Infrastructure as Code (Terraform) and CI/CD technologies and processes.
• Proficiency in scripting (Python, Go, or Bash), and the ability to understand and navigate through large codebases, understanding applications end-to-end. Experience with containers and container orchestrator platforms (Docker, Kubernetes).
• Professional fluency in English and Portuguese.
• Relevant academic qualifications
• Desired:
• Knowledge of local Brazilian cybersecurity standards (e.g., ABNT NBR ISO/IEC 27001 context).
• Relevant certifications such as cloud platform certifications, linux certifications, cybersecurity certifications, etc.
• Previous experience as a software engineer, platform/SRE engineer, or other technology roles.
• Understanding of modern DevSecOps practices.

Benefits

Additional Information

Ebury helps ambitious businesses unlock global growth, and we take the same approach with our people. We encourage innovation and movement, collaboration and problem-solving, and foster an environment where everyone can feel they belong, are valued, supported and empowered to succeed. If you're a collaborator who wants to help transform how businesses operate globally, get in touch - we'd love to discuss how Ebury can accelerate your career so you can shape the future. Senior Security Engineer Ebury São Paulo Office - Hybrid: 4 days in the office, 1 day working from home per week Role Overview: Ebury is rapidly expanding its footprint in Brazil, and we are looking for a Senior Security Engineer to join our São Paulo hub. As a member of the Security Engineering team, you will work closely with other engineering teams to improve the technical security of our applications, our software development lifecycle and our infrastructure. For this role, you will serve as a technical executor and auxiliary decision-maker alongside our Brazilian and global teams, and be responsible for: handling remediation projects in EBB; discovering, reviewing and prioritizing vulnerabilities; creating guardrails, guidelines and tooling to aid developers and platform engineers in delivering safe applications; and more, helping EBB achieve a high security level along all of its application and infrastructure stacks.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at ebury? Share your experience