Job Summary: Manage technology security as the technical reference, designing and maintaining controls in cloud environments to ensure secure systems. Key Highlights: 1. Serve as the primary technical reference for Security 2. Work with cutting-edge cloud and infrastructure security technologies 3. Opportunity to promote security best practices **About Us:** Monkey was founded with the core mission of simplifying financial transactions between large enterprises and their supplier networks through technology. In a simple and fast way, we improve our customers’ and suppliers’ cash flow by advancing their invoices. This is made possible through exceptional partnerships with various financial institutions. **Your Mission** will be to manage all Security demands within the Tech team, acting as the primary technical reference to guide, prioritize, and execute these initiatives while ensuring our environments remain secure. ✨ **Key Responsibilities** * Design, implement, and maintain security controls in cloud environments. * Administer and enhance infrastructure security tools (cloud security — IAM, KMS, encryption, networks / security monitoring and logging / vulnerability management and hardening / network protections, firewalls, and WAFs). * Support and conduct security audits, assessments, and questionnaires (ISO 27001, SOC, clients, partners, etc.). * Define, review, and maintain security policies, standards, and procedures. * Collaborate with the SRE/DevOps team on cluster, pipeline, and automation security. * Perform risk analysis, vulnerability remediation, and action plan definition. * Promote security best practices across Monkey’s infrastructure. * Support security incidents and root cause analyses when required. **Requirements** * Completed Bachelor’s degree. * Solid knowledge of cloud security (IAM, networks, encryption, logging), infrastructure and system security, and DevSecOps and SecOps concepts. * Experience with cloud and infrastructure security tools. * Familiarity with security standards and frameworks (ISO/IEC 27001/SOC 2). * **Strong communication skills to interact with both technical and non-technical teams; an innovative mindset focused on continuous improvement; and autonomy to operate effectively in a dynamic environment.** **Nice-to-Haves** * Knowledge of Kubernetes/containers * Experience conducting client or regulated-environment audits * Cloud or security certifications (AWS, Azure, Security+, ISO, etc.) * Experience in fintech, SaaS, or highly regulated environments. **Our Benefits** * **Meal/Voucher Card** via Flash, with full flexibility to use as preferred; * **Remote Work Allowance**, to support your remote routine; * **100% Company-Paid Health and Dental Insurance;** * **Life Insurance**, for greater peace of mind; * **Wellhub** – access to gyms, studios, and wellness services across Brazil; * **Monkey Academy** – career development and acceleration programs; * **Birthday Day-Off** — to enjoy your special day however you prefer; * **Sesc Membership**, for leisure, culture, and wellness.