Cloud Security Architect

This is a fully remote position, open to applicants in Brazil.

📋 Description

• Serve as the security architect for public applications hosted on AWS;

• Establish security standards for edge security, identity management, segmentation, observability, and application resilience;

• Shape the corporate cloud security strategy, ensuring a balance between security, scalability, and operational efficiency;

• Partner with cloud architects and DevOps teams to detect and rectify insecure configurations;

• Formulate strategies for the deployment of WAF, CNAPP, and CSPM within the organization’s security framework;

• Assess new AWS security services and capabilities, translating them into architecture and governance standards;

• Create security guidelines and best practices for software development based on industry frameworks;

• Act as the technical reference for application security during corporate initiatives;

• Collaborate with development teams to weave security into all phases of the SDLC;

• Identify, prioritize, and define strategies to mitigate application vulnerabilities;

• Incorporate security tools, processes, and automation into the DevOps pipeline (DevSecOps);

• Specify robust authentication and authorization requirements, including privilege and access controls;

• Continuously monitor threats, public vulnerabilities, and trends within the security community;

• Actively engage in projects, technical forums, and change processes to ensure security by design;

• Advocate for secure design practices and data integrity across users, applications, and infrastructure;

• Foster and enhance a culture of security champions within development teams;

• Lead and participate in technical discussions in security forums and meetings;

• Build collaborative relationships with stakeholders to support security initiatives;

• Contribute to information security projects under leadership guidance.

⛳️ Requirements

• Experience in cybersecurity, focusing on web application security or security architecture;

• Proven experience in protecting applications and environments on AWS;

• Proficiency in penetration testing, secure code review, and both static and dynamic code analysis;

• Experience in identifying and mitigating OWASP vulnerabilities;

• Familiarity with web application scanning tools;

• Strong background in software development (Java, Python, C#, etc.);

• Experience with web technologies and frameworks (REST, JSON, XML, JavaScript, React);

• Expertise in securing internal and third-party APIs;

• Background in DevOps, as well as public and private cloud environments;

• Experience in implementing and managing Web Application Firewalls (WAF);

• Knowledge of CNAPP and CSPM;

• Solid understanding of network and web protocols;

• Experience with technical documentation;

• Demonstrated ability to communicate security risks to business stakeholders;

• A university degree, preferably in a technical or analytical discipline;

🏝️ Benefits

• Multi-benefit card – you decide how and where to use it.

• Educational grants for undergraduate, graduate, MBA, and language courses.

• Incentive programs for obtaining professional certifications.

• Flexible working hours.

• Competitive salary packages.

• Annual performance reviews with a structured career development plan.

• Opportunities for international career mobility.

• Access to Wellhub and TotalPass.

• Private pension plan.

• Childcare assistance.

• Comprehensive health insurance.

• Dental insurance coverage.

• Life insurance protection.