Job Closed
This listing is no longer active.
No iFood, acreditamos na força da diversidade para gerar #Inovação e atingir #Resultados incríveis, por isso, não fazemos distinção para candidatos com deficiência, gênero, orientação sexual, raça/etnia, idade, origem, constituição familiar e estética. Temos grupos compostos por foodlovers voluntários, onde falamos sobre Raça, Gênero, LGBTQI+ e PcD. Queremos ser a empresa onde pessoas escolham como lugar para se desenvolver e contribuir para a realização de sonhos, #AllTogether. Nós, FoodLovers, temos fome de inovação e resultado. Buscamos sempre fazer o nosso melhor, pensando "fora da caixa" e atuando com agilidade e responsabilidade! Temos fome de diversidade, conhecimento e compartilhamento. Trabalhamos em um ambiente de muita versatilidade. Sabe o que promove a nossa receita especial? As pessoas! Vem fazer parte disso🤝
Offensive Security Specialist – AI
Location
Brazil
Posted
64 days ago
Salary
0
Seniority
Senior
Job Description
Offensive Security Specialist – AI
iFood
• Monitorar riscos em ecossistemas de agentes autônomos de IA • Testar modelos e soluções de IA identificando vulnerabilidades e riscos ao negócio • Realizar avaliações técnicas, usando IA para antecipar comportamentos anômalos e mal-intencionados • Desenvolver e entregar plataforma autônoma de assessment contínuo de superfície de riscos de IA • Conectar temas complexos de IT Risks e Cyber Risks entre públicos técnicos e não técnicos
Job Requirements
- Experiência em segurança AI Security e AI Risk
- Cases reais de uso de IA para realizar auditorias em ambientes de IA
- Atuação prévia em ambiente bancário ou financeiro
- Comunicação técnica e não técnica com clareza e impacto
- Autonomia para antecipar riscos e agir sem supervisão constante
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Lead and execute penetration tests across: Web and mobile applications, Cloud and infrastructure, Red team engagements • Work on and help shape advanced service offerings, pushing Packetlabs’ technical depth and differentiation • Support scoping and pre-engagement discussions, helping ensure projects are realistic, high-impact, and aligned with client risk • Actively coach and mentor consultants with a strong focus on long-term career growth • Conduct regular 1:1s focused on skills development, feedback, and career progression • Help team members identify their strengths, areas for growth, and learning paths (both technical and soft skills)
Role Description The Business Information Security Consultant provides advisory and hands-on support for security governance, risk management, and secure application development initiatives. This role supports ongoing security efforts for application implementations, third-party risk assessments, and business-facing security programs. The position interacts closely with business, technology, and security stakeholders to assess controls, facilitate risk mitigation activities, and deliver consistent security practices across multiple initiatives. Key Responsibilities - Secure by Design & SDLC Support - Support secure-by-design initiatives by evaluating security controls within application implementations. - Perform security-related SDLC activities using standardized security user stories. - Provide ongoing consultation for in-scope applications to ensure alignment with security requirements. - Assist development and project teams in understanding and applying security controls. - Risk Management & Third-Party Assessments - Conduct risk assessments and due diligence activities for third-party vendors. - Identify risks and recommend mitigation strategies aligned with organizational standards. - Support vendor risk management processes and ongoing monitoring activities. - Security Assessments & Governance Support - Support physical site security assessments on an as-needed basis. - Facilitate Security Risk Acknowledgment and Action Planning activities. - Provide ad-hoc security consultation through formal service request processes. - Ensure consistent application of security governance practices across initiatives. - Reporting & Program Visibility - Prepare and deliver monthly reports summarizing security demand, activities, and outcomes. - Track and communicate workload, trends, and key risk indicators. - Provide updates to leadership on security initiatives and risk posture. - Stakeholder Collaboration & Advisory - Partner with business, IT, and security teams to align on risk, controls, and implementation strategies. - Act as a trusted advisor for security-related decisions and risk acceptances. - Support cross-functional communication and coordination on security initiatives. Qualifications - 5 or more years of experience in information security, risk management, or security consulting. - Experience supporting secure software development life cycle activities. - Experience conducting vendor risk assessments and due diligence reviews. - Strong understanding of security controls, risk frameworks, and mitigation strategies. - Experience working directly with business and technical stakeholders. - Strong written and verbal communication skills. Preferred Qualifications - Experience supporting divestiture, integration, or transformation programs. - Familiarity with enterprise security assessment methodologies. - Experience supporting physical security assessments. - Experience working in regulated or large enterprise environments. Core Skills & Attributes - Strong analytical and risk assessment capabilities. - Ability to communicate complex security concepts to non-technical stakeholders. - Strong organizational and reporting skills. - Ability to manage multiple concurrent tasks in a demand-driven environment. - Collaborative and consultative approach to problem solving. - High attention to detail and accountability in security processes. Benefits - Competitive salary - 100% Remote - Mid–Senior Level (5 or more years of relevant experience) This is a remote position.
• Lead the design and management of cloud security controls across Google Cloud environments • Conduct security assessments to identify vulnerabilities, misconfigurations, and compliance gaps, then drive remediation efforts • Develop and maintain cloud security policies, standards, and best practices aligned with frameworks such as NIST and SOC 2 • Partner with cloud engineering, site reliability engineering, and product engineering teams to implement secure infrastructure and network changes • Support DevOps and infrastructure teams with secure deployment practices, automation, and cloud security tooling • Monitor network activity and security events, investigate threats, and respond to incidents to maintain platform integrity • Mentor team members and share guidance on cloud security strategy, tooling, and emerging risks
• Build the team, processes, and technical controls required to protect our highly sensitive patient data while navigating the intersection of HIPAA and 42 CFR Part 2. • Own the 12–24 month roadmap to achieve HITRUST Certification, ensuring that our security practices are not only effective but are measurable, auditable, and scalable. • Make our Information Security, Trust & Compliance practices a competitive differentiator for Bicycle Health.



