RemoteLeaf Logo
Log in Sign up

Arquiteto de Segurança em Desenvolvimento (AppSec) Senior

3 weeks, 3 days ago
Brazil
Full-time
Senior
Application Security Engineer
Software Development
Agile AWS Azure CI/CD GCP Generative AI LLM
Apply Now
Harford County Public Library

Harford County Public Library

Access, Information, Service, Anytime, Anywhere

Diversified Consumer Services
51-250
Founded 1945
View All Jobs 11

Description

  • Define and implement security strategies for applications, including systems that integrate LLMs and generative AI components.
  • Collaborate with development, engineering, and product teams to embed security practices early in the software lifecycle.
  • Review architecture, code, and designs to identify vulnerabilities and security issues.
  • Define guardrails and security standards for LLM-based applications, addressing risks such as prompt injection, insecure output handling, data leakage, excessive agent autonomy, and denial-of-wallet abuse.
  • Establish guidelines for the safe use of AI-assisted development tools across engineering teams.
  • Develop and promote security standards and best practices for the development organization.
  • Provide technical guidance and security training to development teams.
  • Use CI/CD validation tools such as SAST, DAST, SCA, and secret scanning.
  • Monitor emerging security threats and continuously update protections, including threats affecting AI systems.
  • Develop creative solutions for complex security problems that balance business needs and risk.
  • Investigate threats in corporate and production environments using security experience and intuition.
  • Participate in incident analysis and response, supporting continuous improvement of security processes and practices.

Requirements

  • Experience with common attack vectors.
  • Experience performing threat modeling.
  • Experience protecting APIs and mobile applications.
  • Knowledge of cloud security fundamentals and basic cloud services in AWS, Azure, or GCP.
  • Ability to work within multidisciplinary teams using agile methodologies.
  • Familiarity with security risks in LLM and generative AI applications, including OWASP Top 10 for LLM Applications and MITRE ATLAS.
  • Ability to read and communicate in English.
  • Strong communication skills with the ability to translate complex problems into accessible language.
  • Ability to work autonomously.
  • Ability to use influence and negotiation to drive teams toward secure architectures and issue remediation.
  • Initiative to seek or request information when needed.
  • Bachelor’s degree completed or in progress in Information Security, Computer Science, Information Systems, Software Engineering, or related fields.
  • Passion for learning and thriving in a dynamic, constantly changing environment.
  • Preferred: incident response experience focused on root-cause analysis.
  • Preferred: experience in regulated financial projects involving Bacen, PCI, SOX, or similar requirements.
  • Preferred: solid programming knowledge.
  • Preferred: hands-on experience with threat modeling and defining controls for production LLM applications such as chatbots, copilots, agents, and RAG.
  • Preferred: experience securing APIs that expose AI models, including direct and indirect prompt injection, structured output validation, and authorization controls for function calling and tool use.
  • Preferred: experience defining policies and controls for enterprise use of generative AI tools, including prevention of data and intellectual property leakage.
  • Preferred: knowledge of emerging AI governance and security frameworks such as NIST AI RMF and ISO/IEC 42001.

Benefits

  • Health and dental insurance.
  • 24/7 virtual hospital access.
  • Meal voucher and/or food voucher.
  • Remote work allowance for remote roles.
  • Flexible working hours.
  • Education benefit with access to books, podcasts, training, and video lessons through internal learning platforms.
  • Wellhub membership.
  • TotalPass membership.
  • Childcare assistance.
  • Profit sharing bonus (PLR).
  • Life insurance.
  • Transportation voucher for onsite roles.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

A

Platform Architect

Arbital Health 51-200 Technology, Information and Internet

Arbital Health is seeking a Platform Architect to define and unify the end-to-end architecture of its healthcare technology platform supporting value-based care contracts and regulated data workflows.

Anywhere Full-time Lead Software Architect
$220k-$260k
Agile Apache Spark AWS Databricks HIPAA Kafka
5 hours, 14 minutes ago
CI&T

[Job-29960] .NET Tech Lead/ Architect, Brazil

CI&T 5K-10K Internet Software & Services

CI&T is seeking a Senior .NET Engineer/Tech Lead or Architect to develop and integrate complex back-end software solutions for a distributed international team.

Brazil Full-time Senior Software Architect Technical Lead
Agile Azure C# CI/CD .NET REST API SOAP SQL Server
5 hours, 29 minutes ago
CI&T

[Job-29960] .NET Tech Lead/ Architect, Colombia

CI&T 5K-10K Internet Software & Services

CI&T is seeking a Senior .NET Engineer/Tech Lead or Architect to develop and integrate complex back-end software solutions within a multicultural, English-speaking global team.

Colombia Full-time Lead Backend Engineer Software Architect
Agile Azure C# CI/CD .NET REST API SOAP SQL Server XML
5 hours, 29 minutes ago
GuidePoint Security

Senior Application Security Consultant, Strategic Services- Remote (Anywhere in the U.S.)

GuidePoint Security 251-1K Internet Software & Services

GuidePoint Security is hiring a Senior Application Security Consultant to deliver client-facing application security assessments and advisory services across industries.

United States Full-time Senior Application Security Engineer
C# C++ DevSecOps Encryption Generative AI Java JavaScript PHP Python
5 hours, 29 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers