Empregos atuais relacionados a Senior Application Security Engineer - Nova Lima, Minas Gerais - Rain

  • Senior or Mid-level Network Engineer

    Há 6 dias

    Nova Lima, Minas Gerais, Brasil Venn Telecom Tempo inteiro R$90.000 - R$120.000 por ano

    Senior or Mid-level Network EngineerResponsibilities:Provide second-line support with network troubleshooting.Ensure customer service in accordance with "Service Level Agreement (SLA)".Implementation of national and international SDWAN network projects using Starlink, LTE and 5G technology (onsite and/or remote).Configuration and maintenance of cloud-based...

  • Experienced Recruiter For The Swedish It Industry

    4 semanas atrás

    Nova Lima, Minas Gerais, Brasil Nexer Telescope Tempo inteiro

    OverviewExperienced Recruiter For The Swedish It Industry – Nexer TelescopeJoin to apply for the Experienced Recruiter For The Swedish It Industry role at Nexer Telescope.Role contextSweden needs skilled engineers. About 30 000 of them by 2030. Right now we have ~200 open positions for Software Engineers with our clients in Sweden. You will help find...

  • engenheira sênior

    4 semanas atrás

    Nova Lima, Minas Gerais, Brasil Vale Tempo inteiro

    Overview ENGENHEIRA SÊNIOR - ENGENHARIA DE PROCESSOS DE MANUTENÇÃO E OPERAÇÃO na Vale. VAGA AFIRMATIVA PARA MULHERES. Conheça mais do nosso propósito: Localidade: Nova Lima / MG Horário de Trabalho: Turno diurno Tipo de contrato: Indeterminado Período de inscrição: de 08/09/2025 a 15/09/2025 Requisitos necessários Formação em Engenharia...

  • Backend Laravel Sênior — iGaming

    2 semanas atrás

    Nova Lima, Minas Gerais, Brasil Petrus Software Tempo inteiro R$17.000 por ano

    Backend Laravel Sênior — iGamingHíbrido – Nova Lima/MGaté R$ 17.000(a validar tecnicamente)Estamos buscando um(a)Backend Sênior em Laravelpara construir e evoluirAPIs de alta performance,integrações críticasemicroserviçosem um ambienteiGamingdealta disponibilidade, segurança e escala. O desafioDesenvolver e manter APIs REST/GraphQL com ...

  • Quality Assurance Engineer

    Há 3 dias

    Nova Lima, Minas Gerais, Brasil Avanade Tempo inteiro R$80.000 - R$120.000 por ano

    Estamos em busca de um(a) Analista de Quality Assurance altamente qualificado(a) e proativo(a) para integrar nosso time. O(a) profissional ideal terá forte capacidade analítica, experiência com automação de testes e habilidade para atuar de forma independente, colaborando com equipes multifuncionais em um ambiente global.Come join usSe você é...

  • Consultor SAP Business Transformation Management

    4 semanas atrás

    Nova Lima, Minas Gerais, Brasil Avvale Tempo inteiro

    OverviewConsultor SAP Business Transformation Management (BTM) – Signavio at AvvaleVocê será responsável por apoiar projetos de transformação de negócios utilizando o SAP Signavio Business Transformation Suite, garantindo que processos, estratégias e tecnologia estejam alinhados para acelerar jornadas de S/4HANA e iniciativas de melhoria...

  • Consultor SAP Business Transformation Management

    4 semanas atrás

    Nova Lima, Minas Gerais, Brasil Avvale Tempo inteiro

    Overview Consultor SAP Business Transformation Management (BTM) – Signavio at Avvale Você será responsável por apoiar projetos de transformação de negócios utilizando o SAP Signavio Business Transformation Suite, garantindo que processos, estratégias e tecnologia estejam alinhados para acelerar jornadas de S/4HANA e iniciativas de melhoria...

  • Client Success Partner

    2 semanas atrás

    Nova Lima, Minas Gerais, Brasil Gartner Tempo inteiro R$60.000 - R$120.000 por ano

    About the role: The Client Success team follows a Client for Life Philosophy, and individuals in this role ensure that every Gartner client receives value far exceeding their investment. Associates seek to understand and surface client's business priorities, breakdown challenges, and identify the most effective ways to support the client in making the right...

  • Client Success Manager

    2 semanas atrás

    Nova Lima, Minas Gerais, Brasil Gartner Tempo inteiro R$60.000 - R$120.000 por ano

    About the role:  The Client Success team follows a Client for Life Philosophy, and individuals in this role ensure that every Gartner client receives value far exceeding their investment. Associates seek to understand and surface client's business priorities, breakdown challenges, and identify the most effective ways to support the client in making the...

  • Sysadmin

    4 semanas atrás

    Nova Lima, Minas Gerais, Brasil Netvagas Tempo inteiro

    Sobre a Oportunidade: A Kalendae atua desde 2005 no mercado brasileiro, oferecendo serviços de co-sourcing e consultoria, além de desenvolvimento de aplicações, segurança da informação, consultoria em serviços de infraestrutura on premise e em cloud e capacitação em gerenciamento de serviços de TI e Negócios. Buscamos evolução contínua em...

Senior Application Security Engineer

4 semanas atrás

Nova Lima, Minas Gerais, Brasil Rain Tempo inteiro
Overview

Join to apply for the Senior Application Security Engineer role at Rain .

Rain is the fastest-growing earned wage access (EWA) fintech in the U.S., serving 3.5 million employees and backed by top investors like QED and Prosus. We have raised nearly $400M in funding—including the largest Series A in fintech history—and just closed our Series B to fuel our next stage of hypergrowth.

We are seeking a skilled and driven Senior Application Security Engineer to join Rain\'s growing Security team. This role demands a proactive approach to secure software development and cloud-native defense. You will partner closely with engineering and development squads, and work alongside our Cloud Security and GRC team members to improve Rain\'s application and platform security posture. This position is technically grounded, requiring direct engagement in application-layer matters and security reviews, while also contributing to cloud security automation, awareness initiatives, and secure engineering practices across the SDLC.

Responsibilities
  • Collaborate with development squads to validate vulnerabilities and provide actionable remediation guidance aligned with business risk.
  • Drive threat modeling sessions (e.g., STRIDE, PASTA) for critical systems and APIs.
  • Design, implement, and oversee automated processes for securely updating application and code dependencies, proactively mitigating issues and ensuring timely vulnerability remediation.
  • Integrate security checks into CI/CD pipelines (SAST, DAST, SCA, IaC), working with tools like Semgrep, Snyk, Trivy, and Burp Suite.
  • Contribute to runtime security initiatives, such as container/Kubernetes hardening, RASP, and eBPF-based detection.
  • Build and maintain a security issues dashboard to track remediation status and metrics.
  • Provide real-time support in the event of cybersecurity incidents impacting applications or cloud infrastructure (exploited vuln, credential stuffing, web/API attacks).
  • Partner with the Cloud Security team on security automation tasks and monitoring improvements (e.g., Security Hub remediation automations, DLP monitoring).
  • Conduct proactive research on new threats, vulnerabilities, and attack techniques relevant to Rain\'s architecture.
  • Collaborate with the GRC team to develop and deliver internal security awareness initiatives, phishing campaigns, and developer training (e.g., secure coding, API security).
  • Participate in the continuous improvement of AppSec maturity (e.g., aligning with OWASP SAMM, ISO 27001, or SOC 2 frameworks).
Required Qualifications
  • Fluent English, including strong verbal and written skills.
  • Strong problem-solving and analytical mindset.
  • Excellent communication skills to convey security risks to technical and non-technical stakeholders.
  • 3–5+ years of experience in application security, penetration testing roles, and/or secure code development, including work with QA teams.
  • Hands-on experience with SAST, DAST, and SCA tools (e.g., Semgrep, Burp, Snyk).
  • Deep understanding of web, mobile, and API vulnerabilities (OWASP Top 10, API Top 10, MITRE CWE).
  • Proven expertise in performing code review or security assessments and writing clear reports.
  • Proficiency in at least one backend language (e.g., Go, Python, Node.js) and understanding of React/React Native front-ends.
  • Familiarity with secure architecture of microservices, event-driven systems, and REST APIs using OAuth2/OpenID Connect.
  • Experience securing CI/CD pipelines and integrating AppSec tooling into SDLC.
  • Solid knowledge of containerization and Kubernetes security fundamentals.
  • Understanding of cloud security (preferably AWS), including IAM principles, cloud-native service configurations, and network segmentation.
  • Comfortable with Agile development methodologies and working within cross-functional squads.
  • Software supply chain security (e.g., SBOM, artifact signing).
Preferred Qualifications
  • Certifications such as OSCP, OSWE, GWAPT, CPTE, or CSSLP.
  • AWS, GCP, or Azure Security Specialty certification.
  • Familiarity with bug bounty triage and vulnerability management platforms (e.g., DefectDojo).
  • Experience implementing RASP or eBPF runtime protection tools.
  • Exposure to LLM/AI security considerations and secure code generation practices.
  • Familiarity with logging and monitoring tools (e.g., CloudWatch, Datadog, Grafana).
Who We Are

Rain is a company with a deep passion for its mission, embracing diversity across a global team. We own what we do and let data guide our actions while moving quickly and adapting to new challenges every day.

Rain is committed to Equal Employment Opportunity and does not discriminate based on race, religion, color, national origin, ethnicity, gender, sex (including pregnancy), protected veteran status, age, disability, sexual orientation, gender identity, gender expression, or any unlawful criterion under applicable laws. If you need assistance or accommodation due to a disability, you may contact us at ******.

#J-18808-Ljbffr