Browse
···
Log in / Register
Job Summary: We are seeking a proactive professional to audit and monitor system security, support secure development, and create security policies within an R&D environment. Key Highlights: 1. Conduct security audits and source code reviews 2. Support the development team in adopting DevOps security best practices 3. Collaborate with other departments to ensure compliance Bachelor's degree in Computer Science, Computer Engineering, Software Engineering, or Information Systems. Home \- CEPEL We seek a proactive, initiative-driven professional capable of identifying risks and proposing solutions. We expect attention to detail and a critical mindset to prioritize and manage multiple demands. **Responsibilities and Duties** Main Activities to Be Performed: * Perform security audits and source code reviews to identify vulnerabilities and security non-conformities. * Assess and monitor the security of production systems, proposing improvements and mitigating risks. * Support the development team in implementing security best practices within the DevOps pipeline. * Create and maintain security policies, standards, and automations throughout the development lifecycle. * Collaborate with development, infrastructure, and security teams to ensure compliance with internal and external standards and regulations. **Requirements and Qualifications** Mandatory Knowledge: * Bachelor's degree in Computer Science, Computer Engineering, Software Engineering, or Information Systems. * Experience in secure code analysis and review (security-focused code review). * Knowledge of OWASP Top 10, CWE/SANS Top 25, and Secure Coding practices. * Experience with CI/CD pipelines and integrating security into the DevOps workflow. * Familiarity with secure infrastructure in cloud environments (Azure, GCP, or AWS) and on-premises setups. * Basic knowledge of penetration testing (pentest) and vulnerability analysis. Desirable Knowledge: * Security certifications (e.g., CompTIA Security\+, GIAC, CSSLP, DevSecOps Foundation, OSCP). * Prior experience in incident response and digital forensics. * Knowledge of containers and Kubernetes/Docker security. * Knowledge of SCADA systems. **Additional Information** * Indefinite-term employment contract; * On-site work modality; * Health insurance plan with co-payment, extendable to immediate dependents; * Meal allowance/food voucher; * Private pension plan; * Wellhub (formerly Gympass); * Childcare allowance; * Educational assistance; Centro de Pesquisas de Energia Elétrica (CEPEL), founded by Eletrobras in 1974, is the largest R\&D institution in the electricity sector in Latin America. With over five decades of operation, CEPEL is recognized as a leading non-profit Scientific, Technological, and Innovation Institution (STII), combining world-class technical expertise with state-of-the-art laboratory infrastructure. Present across Brazil and in nine countries, CEPEL develops technologies and services for power generation, transmission, distribution, and trading, driving advances that enhance sector efficiency and reliability. Its strategic solutions cover R\&D projects, technical consulting, laboratory services, and technologies for planning, operation, and management of electrical systems, while also strengthening grid resilience and reinforcing Brazil’s national energy matrix. **Mission** * Develop energy-related technological solutions for society. **Vision** * Be an international reference in innovative energy solutions. **Values** * Life first. * Our energy comes from people. * Integrity always. * Our excellence makes the difference. * Innovate to create value.
