Loft logo
Loft

Viramos a chave do mercado imobiliário para que mais pessoas realizem o sonho do lar ideal. #ViradaDeChaveLoft

Senior Security Engineer – Product Security

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 1,001-5,000Since 2018H1B SponsorCompany SiteLinkedIn

Location

Brazil

Posted

5 days ago

Salary

0

Seniority

Senior

Postgraduate DegreePortugueseAWSCloudPythonSDLC

Job Description

Senior Security Engineer – Product Security

Loft

• Lead Product Security and Cloud Security initiatives from design through operation • Influence architecture and product decisions, embedding security from development through production • Protect applications, APIs, and AWS environments, balancing security, performance, and availability • Proactively identify and mitigate risks, prioritizing automation and scalability • Serve as a technical reference for engineering teams, promoting best practices and reducing friction in the SDLC • Continuously evolve the security posture for cloud, applications, and generative AI • Define and operate protection strategies for applications and APIs using WAF/WAAP (preferably Azion) • Lead API security efforts, mitigating risks described in the OWASP API Security Top 10 • Improve AWS security posture using CSPM/CNAPP (Wiz or similar), Security Hub, GuardDuty, Inspector, and other native services • Develop automations for vulnerability remediation and security processes • Integrate security into the SDLC through threat modeling, security reviews, and AppSec practices • Define controls for the safe use of AI in engineering and products • Support incident response, technical documentation, and risk indicators

Job Requirements

  • Senior experience in Product Security, Cloud Security, or Application Security
  • Strong knowledge of AWS and its main security services (Security Hub, GuardDuty, Inspector, Config, Detective)
  • Experience with CSPM/CNAPP, preferably Wiz
  • Hands-on experience with WAF/WAAP and API protection (OWASP API Security Top 10)
  • Solid knowledge of AppSec, SDLC, threat modeling, and SAST, DAST, and SCA tools
  • Experience with GitHub, CI/CD pipelines, and automation using Python or an equivalent language

Benefits

  • Caju - More flexibility to use your benefits (Meal, Grocery, Mobility, Health, Home Office, Culture, and Education)
  • Health insurance
  • Dental insurance
  • Life insurance
  • Wellhub - Access to gyms across Brazil
  • Wellz - Mental health platform
  • Parental leave - for parents
  • Guapeco - Discounted pet health plan

Related Categories

Related Job Pages

More Security Engineer Jobs

Full TimeRemoteTeam 10,001+Since 1934H1B No Sponsor

• Deliver the full lifecycle of physical and electronic security elements within data centre and critical infrastructure projects. • Oversee technical installation quality, system integration accuracy, device placement, panel wiring, and alignment to global standards. • Serve as the on‑site embedded security representative, collaborating closely with construction, MEP, and infrastructure teams. • Lead functional testing of ACS, VMS, IDS, intercoms, sensors, physical hardware, and failover behaviour. • Verify installation and integration of physical security infrastructure.

Sweden
kr900K - kr1,100K / year
Ad Hoc LLC logo

PKI / IAM Security Engineer

Ad Hoc LLC

Digital-first government for the common good.

Full TimeRemoteTeam 501-1,000Since 2014H1B No Sponsor

• Design, implement, and operate identity, credential, and access management (ICAM) and public key infrastructure (PKI) capabilities • Engineering and operating ICAM services, including authentication, authorization, federation, and single sign-on for platform applications • Implementing and maintaining PKI, including certificate issuance, renewal, revocation, and key lifecycle management • Integrating Personal Identity Verification (PIV) card-based authentication in accordance with HSPD-12 and FIPS 201 • Configuring and managing cloud identity and access management (AWS IAM), including roles, policies, and least-privilege access • Applying federal identity standards and frameworks to platform design and operations • Advancing zero-trust principles across identity and access controls • Automating identity and access provisioning through infrastructure as code (Terraform) • Producing technical documentation and translating complex identity and security concepts for stakeholders • Working with government partners and application teams to meet security, compliance, and access requirements

United States
$130K - $135K / year
Noblis logo

Network Security Engineer

Noblis

An independent nonprofit organization, Noblis provides U.S. federal government clients with science, technology, and engineering services to solve challenging p

Title: Network Security Engineer (Multiple Levels) Location: Washington, Washington, DC; United States; Atlantic City, New Jersey 27320 Hybrid Full Time None Cyber Security Engineering Job Description: Responsibilities We are looking for highly technical professionals with a strong foundation in network architecture, design, and security — individuals who are ready to step up from traditional network engineering roles to take ownership of strategic, architecture-level responsibilities. Ideal candidates will have deep understanding of networking, security architecture and design, and experience applying Federal security guidelines (e.g, NIST 800-53, FISMA, etc.) to harden and secure systems. These are the types of professionals who understand both the big-picture architecture and the hands-on technical details, and who are prepared to make security-focused architectural recommendations in complex environments. The TIS Security Engineer will support the FAA Telecommunications and Integrated Services (TIS) Group and provide expert-level security engineering across the FAA’s FTI environment. This includes: - Analyzing and guiding network architecture to ensure cybersecurity is built-in from the ground up. - Performing hands-on reviews of system configurations, firewall rules, and network paths to align with FAA Orders, NIST 800-53, and federal cybersecurity standards. - Leading efforts in transitioning technologies (e.g., IPv4 to IPv6, microwave radio refreshes) from a cybersecurity and network architecture perspective. - Supporting the integration of Zero Trust, Software-Defined Networking (SDN), and defense-in-depth strategies into enterprise-level solutions. - Acting as a technical bridge between FAA cyber stakeholders and infrastructure providers (network, security, cloud). - Evaluating vendor-proposed architectures and making expert-level recommendations based on federal policy, security principles, and industry best practices. Required Qualifications - Experience supporting federal government programs, ideally within the FAA or transportation sector. - Proven experience with hands-on network engineering or architecture and understands boundary protection design, configurations, firewalls, VPNs, IDS/IPS, and load balancing. - Knowledge of telecommunications infrastructure, including IPv4/IPv6, and WAN/LAN environments. - Understand federal cybersecurity frameworks (NIST RMF, FISMA, NIST SP 800-53 rev 5). - Can evaluate network and system security concepts for large-scale, safety-critical systems like those in the National Airspace System (NAS). - Comfortable advising on defense-in-depth architectures, Zero Trust CONOPS, SD-WANs, and emerging technologies. - Have experience collaborating with System Engineers, Program Managers, and cybersecurity stakeholders to support ATO packages and continuous monitoring. - Ability to develop system security plans, risk assessments, and related security documentation. - U.S Citizen or Green Card Permanent Resident (3+ years U.S. Residency) - Ability to obtain FAA Public Trust. Mid - Bachelor’s degree in Cybersecurity, Information Technology, Telecommunications, or a related field. - 6+ years of experience in cybersecurity or network security roles - Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request. - A High School degree with a total of 10 years of experience in cybersecurity or network security roles - An Associates Degree with a total of 8 years of experience in cybersecurity or network security roles - Masters degree with a total of 3 years of experience in cybersecurity or network security roles. Compensation Ranges: for D.C., NJ, Remote: $105,100 - $164,125 Mid to senior - Bachelor’s degree in Cybersecurity, Information Technology, Telecommunications, or a related field. - 9+ years of experience in cybersecurity or network security roles - Substitutions: For anything requiring a substitution, the government customer is subject to further review and either approve or deny the request. - A High School degree with a total of 15 years of experience in cybersecurity or network security roles - Masters degree with a total of 6 years of experience in cybersecurity or network security roles. Compensation Ranges: for D.C, NJ, Remote: $127,100 - $198,575 Desired Qualifications - CISSP, Security+, CCNA, or similar certification. - FAA or transportation sector experience preferred. - Familiarity with Zero Trust Architecture, Security Orchestration, and network virtualization (e.g., NFV). - Strong written, verbal, and interpersonal skills. Overview Noblis and our wholly owned subsidiaries, Noblis ESI, and Noblis MSD tackle the nation's toughest problems and apply advanced solutions to our clients' most critical missions. We bring the best of scientific thought, management, and engineering expertise together in an environment of independence and objectivity to deliver enduring impact on federal missions. Noblis works with a wide range of government clients in the defense, intelligence and federal civil sectors. Why work at a Noblis company? Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public. Noblis has won numerous workplace awards. Noblis maintains a drug-free workplace. *Remote/hybrid status is subject to change based on Noblis and/or government requirements Posted Salary Range USD $105,100.00 - USD $198,575.00 /Yr.

District Of Columbia + 1 moreAll locations: District Of Columbia | New Jersey
$105.1K - $198.6K / year

Title: Cloud Security Engineer Location: USA Remote Full Part/Time: Full time Job Req: RQ222857 Type of Requisition: Pipeline Clearance Level Must Currently Possess: Top Secret/SCI Clearance Level Must Be Able to Obtain: Top Secret/SCI Public Trust/Other Required: None Job Family: Cyber and IT Risk Management Job Qualifications: Skills: Computer Security, Information Systems, Security Information Certifications: None Experience: 3 + years of related experience US Citizenship Required: Yes Job Description: Advance your career while impacting our national security in cyber as Cloud Security Engineer at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government. The Advana team is seeking a Cloud Security Engineer to join their program. Advana is the Chief Digital and Artificial Intelligence Office's (CDAO) enterprise-wide, multi-domain data, analytics, and artificial intelligence (AI) platform that provides all DoW military and civilian decision makers, analysts, and builders with unprecedented access to enterprise data, tools, and capabilities. Cloud Security Engineer - Conducts patch management operations across Advana cloud enclaves by operating vulnerability scanning workflows, identifying required updates, tracking patch applicability, and automating deployment actions aligned with Department of Defense patching directives supporting Joint Staff elements and mission-owner communities. - Validates patch implementation in controlled environments by executing test sequences, reviewing system behavior, and confirming compliance with configuration baselines across virtual machines, containerized services, Infrastructure as Code modules, and platform services. Operates cloud logging and monitoring mechanisms using CloudWatch, GuardDuty, Splunk, Elastic clusters, and integrated SIEM pipelines to detect configuration drift, unauthorized change activity, and misconfigurations affecting Advana readiness. - Supports deployment and evaluation of incident response procedures by executing data collection steps, performing event correlation, documenting operational impact, and generating incident response metrics such as mean time to detect, mean time to respond, containment intervals, and recovery validation results. - Contributes to incident triage by analyzing indicators of compromise, correlating system logs, validating remediation actions, and preparing status reporting for senior operational leaders. Participates in lessons learned reviews by identifying root causes, proposing corrective actions, and incorporating process improvements into standardized runbooks, intelligence feeds, and automated control mechanisms. - Strengthens defensive posture across NIPRNet, SIPRNet, and JWICS environments by maintaining operational continuity, supporting cyber readiness objectives, and contributing to mission-aligned cloud security modernization efforts. WHAT YOU'LL NEED TO SUCCEED Education: Technical Training, Certification(s) or Degree Experience: 3+ years of related experience Certification: Amazon Web Services AWS Security-Specialty Security clearance level: TS/SCI Eligibility GDIT IS YOUR PLACE At GDIT, the mission is our purpose, and our people are at the center of everything we do. Growth: AI-powered career tool that identifies career steps and learning opportunities Support: An internal mobility team focused on helping you achieve your career goals Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off Community: Award-winning culture of innovation and a military-friendly workplace OWN YOUR OPPORTUNITY Explore a career in cyber at GDIT and you'll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters. The likely salary range for this position is $111,155 - $150,385. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: None Telecommuting Options: Remote Work Location: USA VA Falls Church Additional Work Locations: Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most. Our Identity Verification Process: As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during virtual interviews. We reserve the right to take your picture to verify your identity and prevent fraud. By proceeding, you authorize the collection, processing, and use of your biometric data for identity verification and security purposes.

United States
$111.2K - $150.4K / year