Senior Cybersecurity Engineer

Description

Job Summary: We are seeking a Senior Cybersecurity Engineer to implement security controls, manage access, secure applications, and collaborate on infrastructure and operations. Key Highlights: 1. Hands-on involvement in technical security and cloud infrastructure 2. Focus on automation and continuous improvement of security controls 3. Collaboration with infrastructure/DevOps teams Hello! It's a pleasure to have you participate in SPUN's selection process. Thank you for your interest in learning about our team. Below are the key details about this position: We are looking for a **Senior Cybersecurity Engineer** to join our team. Hiring Type: **PJ****/ME** Monthly Contract Value: **R$12\.000,00 to R$14\.000,00** **Requirements****:** * Proven practical experience in information security/cybersecurity * Experience with Python or Shell Script * Experience with Linux * Hands\-on experience with cloud environments (AWS or GCP) * Solid experience in IAM and access control * Knowledge of OWASP Top 10 * Proficiency in web application security * Experience in vulnerability management * Knowledge of networks, firewalls, and fundamental security concepts * Ability to work autonomously and practically (hands\-on) **Preferred Qualifications****:** * Prior experience in digital companies, media, SaaS, or high-scale environments * Familiarity with WAF, SIEM, and EDR * Experience with DevSecOps * Certifications such as Security\+, CEH, AWS Security, AZ\-500, Google Cloud – Professional Cloud Security Engineer, or similar **Responsibilities****:** Technical Security (Hands\-on) * Implement security controls in cloud or VPS environments * Manage access, identities, and privileges (IAM, RBAC, MFA) * Ensure application security following OWASP guidelines, hardening, and best practices * Perform analysis and remediation of technical vulnerabilities * Evaluate and implement security tools (WAF, scanners, SIEM, EDR, etc.) Infrastructure and Cloud * Collaborate with infrastructure/DevOps teams on server hardening * Secure CI/CD pipelines * Implement secret and credential management * Work in multicloud or cloud\-first environments Operations and Continuous Improvement * Respond to security incidents when required * Create and maintain up-to-date technical documentation * Automate security controls wherever possible * Support technical audits and security testing * Help reduce MTTR **Benefits****:** 100% remote work, delivery-based model with mutually agreed availability. CAJU Card: Receive 15% of your monthly contract value to use across categories such as Home Office, Culture, Mobility, Health, and Education. **️** Life Insurance: Peace of mind and protection guaranteed for you and your family; English Classes: Open classes offered semiannually to enhance your learning; ️‍ ️ Physical Activity Allowance: Incentive to maintain your health and well-being; Training Consultation: Periodically scheduled group sessions with specialists to maximize your results; Training Sessions and Talks: Exclusive content for your professional and personal development. **About the Application Form:** After submitting your information, you will receive a **confirmation email for your application**. All communication during the selection process occurs **exclusively via email**, so we recommend checking your **spam and promotions folders** to avoid missing any updates regarding your application. **About the Selection Process:** The selection process will be conducted in stages, as outlined below: **1\. Application Collection:** The application form remains open for submissions. **2\. Profile Screening:** Technical review of professional experience aligned with the role’s scope. **3\. DISC Assessment:** A complementary step to understand behavioral profile. **4\. Interview with People & Management Team:** Cultural alignment and evaluation of behavioral competencies. **5\. Interview with Area Leadership:** Technical assessment and evaluation of role-related competencies. **6\. Offer and Hiring.** We receive a large number of applications; therefore, evaluations are conducted continuously and rigorously, prioritizing alignment with the role’s scope and requirements. All applicants receive feedback upon completion of the process—whether advancing or concluding their participation. You can access our **Recruitment and Selection Data Protection Notice** at this link, which contains all information regarding data storage!