Offensive Security Engineer
4 semanas atrás
What’s the opportunity?
Assess network, environment, or technologies; Write tooling to assist with offensive security assessment; Conduct discovery activities to map environments; Build, conduct, and participate in offensive security exercises; Perform penetration testing (application, API, mobile, infrastructure), vulnerability scanning (internal and external), code reviews and design/architecture reviews; Work closely with development teams to mitigate or remediate security vulnerabilities; Empower developers to do their jobs securely without creating additional friction; Educate our engineers about security in application code and infrastructure; Educate our non-technical employees about security good practices and attacks; Assist in Incident Response activities (if it involves Security);
What skills do I need?
Advanced background in Offensive Security (Red Team active participation); Strong understanding of vulnerabilities, common attack vectors and how to solve/fix them; A great eye to identify/analyze attacks on company assets and also simulate internal/external attacks (Ethical Hacker mindset); Well-rounded background in host, network and application security (Web, API and Mobile); Huge familiarity with threat analysis (malware, phishing, social engineering, etc); Attacker mindset ability to think about creative threats and attack vectors; Knowledge in tailored reconnaissance, weaponization, exploitation and lateral movement; Know-How of Threat modeling in a cloud environment; Experience with common security tools including but not limited to: Nmap, SQLmap, Metasploit, Kali Linux (OS), Burp Suite, Qualys/WAS, ZAP Proxy, Prowler, Censys/Shodan and others; Familiarity with implementation and maintenance of SAST/DAST/IAST sensors; In-depth knowledge of OWASP10, SANS25 and other world-known security frameworks; Understanding of a complete SDLC and how to make it secured (S-SDLC) Familiarity with Cloud platforms (AWS or equivalent); Ability to lead people to problem resolution when it comes to Security (Integrate teams, especially Engineering Team); Effective written and oral communication involving both business and technical sides of the business; Quickly identify issues and solve them; Ability to present technical risks to a broader audience (both written and spoken);
Nice to have
Experience on research of vulnerabilities and development of exploitation tools Building and automating common Red Team processes and activities Knowledge of security architectures, both monoliths and microservices, including how they are developed and operate at scale Certification or equivalent knowledge (DCPT/OSCP/OSCE/OSWP/OSWE/CEH) Exposure to PCI-DSS framework or any other relevant security standard will be valued Have previously participated as speaker (or just participated in the activities) on Security conferences like DefCon, MindTheSec, EkoParty, Hackaflag, Bhack, You sh0t the sheriff, CryptoRave, etc Active participation in CTFs and also Bug Bounty programs What happens after you apply? Our Talent Acquisition team is invested in creating the best candidate experience possible, so don’t worry, you will definitely hear from us. We will review your CV and keep you posted by email at every step of the processAlso, you can check out our , , , and for more about dLocal-
Offensive Security Engineer
3 semanas atrás
São Paulo, Brasil dLocal Tempo inteiroWhy you should join dLocal? dLocal enables the biggest companies in the world to collect payments in 40 countries in emerging markets. Global brands rely on us to increase conversion rates and simplify payment expansion effortlessly. As both a payments processor and a merchant of record where we operate, we make it possible for our merchants to make...
-
Security Technologist
Há 1 mês
Sao Paulo, Brasil Uber Tempo inteiroConduct network infrastructure, Public Cloud (AWS and GCP), and data-layer offensive pen-testing - Perform manual source code reviews and audits (manual and SCA/SAST code audits) as needed - Basic Qualifications - A pen-test certification such as Offensive Security Certified Professional (OSCP) or CEH, OSWE, OSCE, GPEN, GMOB, GWAPT, GXPN, eWAPT, eMAPT and/or...
-
Network Security Engineer
3 semanas atrás
São Paulo, Brasil Hyqoo Tempo inteiroTitle Network Security EngineerType ContractLocaton Hybrid, Sao Paulo BrazilJob Summary:We are seeking an experienced Network Security Engineer to
-
Pessoa de Offensive Security
Há 1 mês
Sao Paulo, Brasil C6 Bank Tempo inteiro**C6 BANK: O BANCO DA SUA VIDA**: Nós somos o banco que chegou com tudo em 2019! Atendemos pessoas físicas, MEIs e PMEs em todos os estados do Brasil. Sem agências físicas para te prender, oferecemos mais de 40 produtos e serviços financeiros feitos para todos os perfis de clientes. Nossa base fica em São Paulo, com mais de 3.500 CSixers que estão...
-
Sao Paulo, Brasil Kroll Tempo inteiroIn a world of disruption and increasingly complex business challenges, our professionals bring truth into focus with the Kroll Lens. Our sharp analytical skills, paired with the latest technology, allow us to give our clients clarity—not just answers—in all areas of business. We embrace diverse backgrounds and global perspectives, and we cultivate...
-
Network Security Engineer
Há 1 mês
São Paulo, Brasil Hyqoo Tempo inteiroJob Title: Network Security EngineerLocation: Hybrid (2 days onsite/Week)Address: (Rod. Pres. Dutra, Km 154 - s/n - Jardim das Industrias, São José dos Campos - SP, 12240-420, Brazil)Job Summary:We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong...
-
Network Security Engineer
4 semanas atrás
São Paulo, Brasil Hyqoo Tempo inteiroTitle - Network Security EngineerType - ContractLocaton - Hybrid , Sao Paulo BrazilJob Summary:We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong background in designing, deploying, and managing network security solutions, with a focus on firewall/IPS and...
-
Network Security Engineer
4 semanas atrás
São Paulo, Brasil Hyqoo Tempo inteiroJob Title: Network Security Engineer Location: Hybrid (2 days onsite/Week) Address: (Rod. Pres. Dutra, Km 154 - s/n - Jardim das Industrias, São José dos Campos - SP, 12240-420, Brazil) Job Summary: We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong...
-
Network Security Engineer
3 semanas atrás
São Paulo, Brasil Hyqoo Tempo inteiroTitle - Network Security EngineerType - ContractLocaton - Hybrid , Sao Paulo BrazilJob Summary:We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong background in designing, deploying, and managing network security solutions, with a focus on firewall/IPS and...
-
Network Security Engineer
4 semanas atrás
São Paulo, Brasil Hyqoo Tempo inteiroJob Title: Network Security EngineerLocation: Hybrid (2 days onsite/Week)Address: (Rod. Pres. Dutra, Km 154 - s/n - Jardim das Industrias, São José dos Campos - SP, 12240-420, Brazil)Job Summary: We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong...
-
Network Security Engineer
4 semanas atrás
São Paulo, Brasil Hyqoo Tempo inteiroTitle - Network Security Engineer Type - Contract Locaton - Hybrid , Sao Paulo Brazil Job Summary: We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong background in designing, deploying, and managing network security solutions, with a focus on...
-
Network Security Engineer
4 semanas atrás
São Paulo, Brasil Hyqoo Tempo inteiroJob Title: Network Security EngineerLocation: Hybrid (2 days onsite/Week)Address: (Rod. Pres. Dutra, Km 154 - s/n - Jardim das Industrias, São José dos Campos - SP, 12240-420, Brazil)Job Summary: We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong...
-
Network Security Engineer
4 semanas atrás
São Paulo, Brazil, BR Hyqoo Tempo inteiroJob Title: Network Security EngineerLocation: Hybrid (2 days onsite/Week)Address: (Rod. Pres. Dutra, Km 154 - s/n - Jardim das Industrias, São José dos Campos - SP, 12240-420, Brazil)Job Summary: We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong...
-
Network Security Engineer
4 semanas atrás
São Paulo, Brazil, BR Hyqoo Tempo inteiroTitle - Network Security EngineerType - ContractLocaton - Hybrid , Sao Paulo BrazilJob Summary:We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong background in designing, deploying, and managing network security solutions, with a focus on firewall/IPS and...
-
Network Security Engineer
4 semanas atrás
São Paulo, SP, Brasil Hyqoo Tempo inteiroJob Title: Network Security Engineer Location: Hybrid (2 days onsite/Week) Address: (Rod. Pres. Dutra, Km 154 - s/n - Jardim das Industrias, São José dos Campos - SP, 12240-420, Brazil) Job Summary: We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong...
-
Network Security Engineer
4 semanas atrás
São Paulo, SP, Brasil Hyqoo Tempo inteiroJob Title: Network Security Engineer Location: Hybrid (2 days onsite/Week) Address: (Rod. Pres. Dutra, Km 154 - s/n - Jardim das Industrias, São José dos Campos - SP, 12240-420, Brazil) Job Summary: We are seeking an experienced Network Security Engineer to join our team and protect our large enterprise network. The ideal candidate will have a strong...
-
Senior Cloud Security Engineer
4 semanas atrás
São Paulo, Brasil Signifyd Tempo inteiroPlease apply in English About the role As a Senior Cloud Security Engineer at Signifyd, you will work to control and improve security outcomes across the company. You will operate at the front line of risk, identifying vulnerabilities and threats, and collaborate cross-functionally across the organization to implement defenses. As a core...
-
Application Security Engineer
4 semanas atrás
São Paulo, Brasil Media.Monks Tempo inteiroAs an Application Security Engineer will be contributing to improve the security within the SDLC by identifying and implementing appropriate security controls such as training the teams in secure development practices, implementing SAST flows and growing security testing capabilities. You’ll be the POC for AppSec for development and operations teams. ...
-
Senior Security Engineer
Há 1 mês
São Paulo, Brasil Wildlife Studios Tempo inteiroWe are looking for a Senior Security Engineer to join our Corporate Team. This person will work as part of a team that analyzes which tools and processes need to be implemented to reduce cybersecurity risk, prioritize and decide the team's next steps, and implement them in an efficient manner. We leverage tools for endpoint protection to identify and...
-
São Paulo, Brasil Google Inc. Tempo inteiroSecurity Engineering Manager, Security Surveillance Apply info_outline info_outline X Info Please submit your resume in English - we can only consider applications submitted in this language. Please submit your resume in English - we can only consider applications submitted in this language. Bachelor's degree in Computer Science, a related...