RemoteLeaf Logo
Log in Sign up

Director Security Engineer | DevSecOps

18 hours, 46 minutes ago
Brazil
Full-time
Lead
Application Security Engineer
DevOps and Infrastructure
API Gateway AWS Burp Suite CI/CD Elasticsearch GCP Go Java JavaScript Kubernetes Microservices Prisma Python Secrets Management Sentinel SIEM SonarQube Splunk
Apply Now
Wellhub

Wellhub

Wellhub: An Upstream OS for data-driven decisions, optimizing production, reducing costs, and minimizing downtime in the Oil & Gas industry.

Gas Utilities
1-10
Founded 2016
View All Jobs 48

Description

  • Lead the technical security strategy for product and application security, including architecture standards, security baselines, and secure coding guidelines.
  • Architect and implement DevSecOps pipelines with integrated SAST, DAST, SCA, and container scanning across CI/CD workflows.
  • Drive threat modeling for critical product flows and partner with engineering leaders to mitigate risks before production.
  • Design and implement centralized security telemetry by unifying application logs, WAF events, and fraud signals in a SIEM platform.
  • Lead the evaluation, selection, and implementation of security tools across application security, SIEM/SOAR, PAM, API gateway security, and container security.
  • Build, establish, and mentor a team of embedded DevSecOps engineers across product verticals.
  • Own the technical roadmap for improving detection and response times and enabling real-time fraud detection through automation.
  • Partner with product and engineering leaders to balance rapid delivery with robust security controls.
  • Promote a culture of shared security responsibility and wellbeing across engineering teams.

Requirements

  • At least 4 years in a senior technical leadership role in application security, cloud security, or security engineering.
  • Deep expertise in secure software development lifecycle (SSDLC), threat modeling frameworks such as STRIDE and PASTA, and security architecture for distributed systems and microservices.
  • Hands-on experience with SAST tools such as Checkmarx, Snyk, or SonarQube, DAST tools such as Burp Suite or OWASP ZAP, SCA, container scanning tools such as Trivy or Prisma, and SIEM platforms such as Elastic, Splunk, or Sentinel.
  • Strong cloud security knowledge in AWS and/or GCP, including IAM, VPC security, secrets management, and Kubernetes/EKS security.
  • Experience building and scaling DevSecOps programs, integrating security into CI/CD pipelines, and mentoring engineers on secure coding practices.
  • Proficiency in at least two programming languages, such as Python, Go, Java, or JavaScript, for code review and security automation.
  • Familiarity with compliance frameworks such as ISO 27001, PCI DSS, LGPD, and GDPR.
  • Strong communication skills in Portuguese and English.
  • Prior experience in application security engineering and DevSecOps pipeline implementation is mandatory for this role.
  • Brazil-based candidates only, with remote work available within Brazil.

Benefits

  • Free Gold+ Wellhub membership with access to gyms, studios, digital fitness programs, and wellness resources.
  • Ability to add up to three family members to the Wellhub plan.
  • WELLZ emotional wellbeing program with 52 therapy sessions per year and on-demand content.
  • Health, dental, and life insurance.
  • Flexible First work model with hybrid and remote options, plus home office reimbursement.
  • Paid time off including vacation after 6 months, 3 additional days off per year, tenure-based extra days, and a birthday holiday.
  • 100% paid parental leave, with extended leave and a ramp-back period for parents giving birth.
  • Career growth support through learning platforms, interactive sessions, personalized development roadmaps, and internal opportunities.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

CI&T

[job-29121] Gerente de Arquitetura, Brasil

CI&T 5K-10K Internet Software & Services

A CI&T is seeking a Senior Architecture Manager in Brazil to shape the technology vision for a banking transformation program, translating strategic direction into enterprise-wide patterns, directives, and execution plans.

Brazil Full-time Senior DevOps Engineer Infrastructure Engineer
Agile AWS GCP GitOps Kubernetes
22 minutes ago
ESG News

Data Governance Technical Specialist

ESG News 11-50 Internet Software & Services

The Financial Times is hiring a Data & AI Governance Platform Engineer to own and scale the cloud-native infrastructure and integrations behind key governance platforms across the FT data environment.

Bulgaria Full-time Mid Level Cloud Engineer DevOps Engineer
Apache Airflow AWS AWS CDK CI/CD CircleCI CloudFormation Kafka MongoDB SQL Terraform
2 hours, 41 minutes ago
Omilia

Senior Product Security Analyst

Omilia 251-1K IT Services

Omilia is hiring a Senior Product Security Analyst to own product and application security reviews across the software lifecycle, helping protect cloud-based SaaS products, platforms, and customers as the company scales.

United States Canada United Kingdom Full-time Senior Application Security Engineer
Agile AWS Microservices Penetration Testing
2 hours, 49 minutes ago
Kaseware

Senior DevOps / Platform Engineer

Kaseware 11-50 Professional Services

Kaseware is hiring a Senior DevOps / Platform Engineer to design and operate the cloud infrastructure that supports its customer deployments across Azure and AWS from a fully remote role within the EU.

Belgium Finland France Germany Spain Sweden Full-time Senior DevOps Engineer Platform Engineer
$80k-$100k
ArangoDB Argo CD AWS Azure Bash CI/CD Datadog DNS Docker Elasticsearch Fluentd Git GitHub Actions GitLab CI GitOps Grafana Helm Kubectl Kubernetes Linux Load Balancing MongoDB Nginx PostgreSQL Prometheus Python Terraform TLS
4 hours, 8 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers