DevSecOps engineer at Ford ensuring secure software development and compliance with security standards. Collaborating with teams to embed security practices and assess vulnerabilities in software delivery.
About the role
- Staff Security Engineer responsible for implementing defensive security controls at Creditas. Joining a team focused on protecting clients through technological solutions.
Responsibilities
- Work hands-on to implement, operate and evolve defensive security controls, focusing on endpoints (Windows, Mac, Linux);
- Conduct detection and incident response activities, including technical analysis and defining containment and remediation plans;
- Operate and maintain DLP, SWG, antivirus and EDR solutions;
- Support the definition and implementation of security baselines in workplace environments;
- Collaborate with internal service desk and access management teams to reinforce security practices, prioritizing automation and scalability;
- Participate in the development and maintenance of operational security playbooks, metrics (KPIs) and risk indicators;
- Evaluate new technologies and propose solutions to strengthen the company's security posture;
- Support audit and compliance processes, when applicable, ensuring alignment with relevant standards and frameworks (ISO 27001, NIST, SOC 2, among others).
Requirements
- Strong knowledge of defensive security, endpoint protection and incident response;
- Hands-on experience with DLP, SWG, antivirus, EDR, SIEM and SOAR solutions;
- Experience in hardening and vulnerability management on Windows, Mac and Linux environments;
- Broad knowledge of cybersecurity, including cloud security, identity and risk management;
- Ability to work hands-on and to provide technical guidance to less experienced colleagues;
- Availability for a hybrid work model: you are required to attend our office in the Morumbi area of São Paulo once a month for four consecutive days, usually during the last or first week of the month (Creditas in Person).
Benefits
- Health insurance (Alice)
- Dental insurance (SulAmérica)
- Wellz: 100% free therapy sessions
- Wellhub: access to gyms and studios
- Creditas Endurance: incentive program for high-impact sports
- Pharmacy discount program (Univers)
- Life insurance (Porto Seguro)
- Birthday day off
- Extended parental leave: 6 months for birthing parents and 35 days for non-birthing parents
- Family Care: maternity and paternity support program
- Childcare allowance
- Allowance for dependents with disabilities (PWDs)
- SESC: access to facilities for you and your dependents
- Meal allowance (VR): flexible benefits card (Creditas Card)
- Payroll-deductible credit (Creditas Benefits)
- Salary advance (Creditas Benefits)
- Discounts on insurance (Minuto Seguros)
- Access to exclusive financial education content in the Creditas app
- PPR: profit-sharing program
- Educational and development incentives
- Flexible work model
- Complimentary bike parking at the office
- Partnered parking at the office (subject to internal availability)
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Security Officer responsible for ensuring safety and security at the Genesee Brewing Company. Monitoring premises, responding to emergencies, and providing visitor assistance during shifts.
Security Estimator creating estimates and proposals for security projects at LINX. Collaborating with engineering and sales teams for system design and client relationships.
Product Security Architect at Expedia designing secure architecture for services and APIs. Collaborating with teams to guide secure practices and integrate AI - driven solutions.
IT Security Officer overseeing information security for a specific IT sector at Desjardins. Collaborating with cross - sector teams and managing information security risks and vulnerabilities.
Associate, Information Security professional at Santander focusing on Vulnerability Management and network security exposure. Collaborating with teams to enhance security posture and manage technology risks.
IAM Security & Technology Governance person driving IAM technical program with cutting - edge technology to improve security posture at MUFG. Manage IAM requirements, standards, governance and solutions across global implementation.
Senior Analyst in Mastercard's newly created Vocalink Control Office supporting control testing across Security domains. Ensuring a strong control environment and identifying gaps for improvement.
Senior Analyst focusing on Information Security and Compliance at Cirque du Soleil. Engaging in threat analysis and improvement of security tools and processes, within a creative company culture.
Security Architect designing and implementing cybersecurity architectures for UK Defence projects. Collaborating with stakeholders to safeguard client data against cyber threats.