About the role

Security Engineer ensuring protection of corporate environment at Creditas. Implementing security controls and elevating defensive maturity with a focus on fintech standards.

Responsibilities

Ensure protection of the corporate environment and the company’s assets.
Responsible for implementing and operating controls that protect our people and data, balancing strong security with an excellent user experience.
Be a key player in our restructuring, helping to raise the maturity of our internal defensive posture.
Endpoint Management: administer and optimize EDR/antivirus tools and Mobile Device Management (MDM) solutions.
Email and Collaboration Security: configure and monitor spam and phishing filters and Data Loss Prevention (DLP) tools in environments such as Google Workspace or Office 365.
Vulnerability Management: run vulnerability scans on corporate assets, prioritize remediation with the IT team and validate fixes.
Corporate Identity (IAM support): assist in maintaining the access lifecycle (onboarding/offboarding) and ensure the health of MFA across all corporate tools.
Awareness: help create Security Awareness campaigns and phishing simulations to build security culture among employees.
Local Incident Response: act as first responder to incidents that affect user machines or office tools.

Leadership experience: previous experience managing technical security teams or serving as a high‑seniority Tech Lead.
Holistic view: solid knowledge in at least two of the areas under your responsibility (e.g., strong AppSec expertise and a good foundation in Incident Response).
Engineering mindset: experience with security automation and infrastructure-as-code (Terraform, CloudFormation) in AWS or GCP environments.
Assertive communication: ability to translate complex technical risks into business impact for stakeholders.
Prior experience in fintechs or highly regulated environments (BACEN, LGPD).
Active participation in the security community (talks, CTFs, Bug Bounty).
Availability for hybrid work: required to attend our Morumbi, São Paulo office once a month for 4 consecutive days, usually during the last or first week of the month (Creditas in Person).

Health plan (Alice)
Dental plan (SulAmérica)
Wellz: fully covered therapy sessions
Wellhub: access to gyms and studios
Creditas Endurance: high-impact sports incentive program
Pharmacy discount program (Univers)
Life insurance (Porto Seguro)
Birthday day off
Extended parental leave: 6 months for birthing parents and 35 days for non-birthing parents
Family Care: support program for maternity and paternity
Childcare assistance
Assistance for dependents with disabilities (PWD)
SESC: access to SESC facilities for you and your dependents
Meal allowance (VR): flexible benefits card (Creditas Card)
Payroll-deductible loans (Creditas Benefits)
Salary advance (Creditas Benefits)
Discounts on insurance (Minuto Seguros)
Access to exclusive financial education content in the Creditas app
PPR (profit-sharing program)
Educational and development incentives
Flexible work model
Free bike parking at the office
Partnered/discounted parking at the office (subject to internal availability)