Staff Security Engineer | Platform Security

This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Staff Security Engineer | Platform Security based in Brazil.

This role is an opportunity for a senior security engineer to shape how security is designed, built, and scaled across modern cloud-native platforms. You will work at the core of platform engineering, transforming security requirements into automated, reusable, and scalable guardrails that enable teams to build safely by default. Operating in a high-impact, engineering-driven environment, you will collaborate closely with SRE, software, data, and AI teams to embed security into every layer of the stack. The position blends architecture, hands-on engineering, and strategic influence, ideal for professionals who thrive in solving systemic security challenges. You will help define standards, build security platforms, and elevate engineering maturity across multiple domains. This is a highly technical and influential role focused on long-term platform resilience and security excellence.

• Define and evolve the platform security strategy, aligning engineering practices with business and compliance requirements.
• Design and implement secure architectures for cloud-native systems, ensuring resilience, scalability, and strong security posture.
• Build security standards and guardrails as code, including Infrastructure as Code (Terraform), CI/CD pipelines, and containerized environments.
• Develop security automation tools, reusable frameworks, and internal platforms to embed security across engineering workflows.
• Implement and improve secure CI/CD pipelines, integrating security testing practices such as SAST, DAST, and SCA.
• Conduct threat modeling and security design reviews for critical systems, APIs, and platform features.
• Collaborate with engineering teams to integrate security into development lifecycles using shift-left and security-by-default principles.
• Participate in incident response processes and post-mortem analysis to strengthen system resilience.
• Partner with SRE, product, and engineering teams to balance security, performance, and usability in architectural decisions.
• Mentor engineers and act as a technical reference for secure development practices and DevSecOps adoption.

Requirements

• 6+ years of experience in software engineering and information security, with a focus on platform or infrastructure security.
• Strong experience with cloud platforms such as AWS, GCP, or Azure and their security services.
• Proficiency in Python or Go for building automation, tooling, and security platforms (Java is a plus).
• Solid expertise in Infrastructure as Code (Terraform) and modern cloud infrastructure practices.
• Hands-on experience implementing DevSecOps practices and integrating security into CI/CD pipelines.
• Strong knowledge of container security and orchestration platforms such as Kubernetes.
• Ability to design and solve complex systemic security problems in distributed environments.
• Experience with security architecture, microservices, and API-based systems.
• Familiarity with compliance frameworks such as SOC 2, ISO 27001, and LGPD/GDPR is a plus.
• Knowledge of threat modeling methodologies such as MITRE ATT&CK is desirable.
• Strong communication skills, with the ability to influence technical and non-technical stakeholders.
• Advanced or fluent English proficiency.

Benefits

• Competitive compensation package.
• Fully remote work flexibility within Brazil.
• Opportunity to work on large-scale, cloud-native security and platform engineering challenges.
• Exposure to modern DevSecOps practices and cutting-edge engineering environments.
• High-impact role with strong technical ownership and autonomy.
• Collaborative environment with senior engineering professionals across multiple domains.
• Career growth opportunities in platform security, architecture, and technical leadership.
• Flexible engagement model supporting work-life balance and autonomy.