Técnico de Segurança do Trabalho at Cia do Treinamento responsible for training clients on safety regulations and conducting safety assessments. Seeking professionals passionate about safety and compliance across Brazil.
About the role
- Senior Cloud Security Engineer securing public cloud platforms and services in the financial industry. Collaborating with teams to enhance security posture and ensure compliance in cloud environments.
Responsibilities
- Identify threats, and design and develop appropriate defense measures
- Evaluate public cloud platform's, native cloud services', public cloud workloads' changes for security implications
- Ensure public cloud platform, services, and workloads are secure by design, which includes identifying, presenting opportunities of improvement on enhance the security posture of the public cloud environments
- Configure continuous compliance validation to ensure ongoing adherence to security policies and regulations
- Support the monitoring of cloud environments for security incidents and for rapid response through automated mechanisms
- Collaborate with cross-functional teams, including developers, cloud engineers, architects, and operations, to (1) embed security-as-code practices into the DevOps pipeline, and (2) implement technical enhancements to the security design/posture of the public cloud environments
- Serve as a subject matter expert on public cloud technologies and security solutions
- Provide guidance and mentorship to team members
- Foster a culture of continuous improvement, innovation, and knowledge sharing across the organization
- Stay updated on the latest cloud security threats and advancements
Requirements
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field, or relevant industry certifications
- At least 3 years of experience in designing, implementing, and securing public cloud platforms and services, preferably in AWS and Azure; OCI is a plus
- Professional experience in highly regulated industries, preferably in financial industry is major plus
- Required certifications - at least one of the following: AWS Certified Solutions Architect (Associate and/or Professional), AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer Associate
- The following certifications are a plus: ISC2 Certified Cloud Security Professional (CCSP), ISC2 Certified Information Systems Security Professional (CISSP), ISACA Certified Information Systems Manager (CISM), EC-Council Certified Ethical Hacker (CEH)
- Expertise in public cloud service providers, especially in Amazon Web Services (AWS) and Microsoft Azure; Oracle Cloud Infrastructure (OCI) is a plus
- Hands on experience with public cloud-native platforms and services - such as Compute, Network, Storage, and ideally Generative AI/Agentic AI public cloud services - with understanding of security control requirements to securely implement for usage of services
- Hands on experience with public cloud-native security services specialized in Threat Detection, Encryption, Data Protection, Compliance, Identity and Access Management / Permission guardrails, etc
- Preferably, hands on experience with solutioning and configuring automated security policies in Cloud Native Application Protection (CNAPP) inclusive of capabilities such as Cloud Security Posture Management (CSPM), Infrastructure-as-code (IaC) Scanning, etc
- Deep understanding of cloud security frameworks (e.g., AWS Well-Architected Framework, Azure Well-Architected Framework), industry compliance requirements, and best practices
- Familiar with Infrastructure as code, preferably Hashicorp Terraform; AWS CloudFormation, and Azure Resource Manager (ARM) templates
- Strong analytical skills to identify potential security risks and automate security compliance checks
- Excellent problem-solving abilities and the capacity to work effectively under pressure
- Be proactive, with a strategic approach to security management, ensuring that the public cloud platform and solutions are not only secure but also compliant at all times through automated policies and validation
Benefits
- comprehensive health and wellness benefits
- retirement plans
- educational assistance and training programs
- income replacement for qualified employees with disabilities
- paid maternity and parental bonding leave
- paid vacation
- sick days
- holidays
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Ingénieur en sécurité physique participant à des projets d’envergure au sein de Stantec. Analysant besoins, concevant systèmes de sécurité et préparant documentation technique.
System Security Engineer strengthening cybersecurity posture across on - premise and hybrid environments. Focused on Windows infrastructure security, identity management, and compliance.
Security Testing Lead overseeing application security testing activities at Computer World Services. Ensuring continuous identification and remediation of application security risks through dynamic testing methods.
IS Security Administrator managing all aspects of cyber security and data protection at Avita Health System. Responsible for risk assessments and IT security strategies across various platforms.
Senior Security Engineer strengthening security at fintech startup Flanks, focusing on security initiatives and practices across applications and infrastructure.
Director of Control Assurance leading IT risk management and controls testing at RBC. Propelling technology, risk, and security advancements across the organization.
OT Security Architect at Orange Cyberdefense providing security solutions for operational technology environments. Leading efforts in OT/ICS security and ensuring stable production for clients.
Physical Security Technology Manager overseeing design and implementation of security technologies across global offices. Collaborates with teams to ensure compliance and optimize security solutions.
Security Consultant for NTT DATA tackling client cybersecurity challenges through assessments and customized solutions. Responsible for implementing security measures and managing risk effectively.