




Job Summary: Offensive security professional to perform penetration tests, vulnerability mitigation, incident response, and security tool implementation. Key Highlights: 1. Penetration testing and offensive security experience 2. Threat Intelligence and incident response experience 3. Knowledge of AppSec, Red Team, and cloud security **Responsibilities:** * Conduct and support penetration tests on web applications, mobile apps, and APIs * Support vulnerability remediation and mitigation efforts alongside development teams * Participate in offensive security and Threat Intelligence initiatives * Engage in incident response activities with the CSIRT team * Implement and operate security tools * Prepare technical reports and metrics **Requirements:** * AppSec experience (SAST, DAST, SCA, API Security, IaC) * Penetration testing experience (OWASP, NIST, etc.) * Familiarity with tools such as Burp Suite, Nmap, Metasploit, SQLMap, Nessus, and Qualys * Red Team experience (MITRE ATT\&CK, Kill Chain) * Cloud security knowledge (Azure) * Programming/scripting skills (Python, Java, or .NET) * Familiarity with frameworks such as ISO 27001, NIST, and CIS **Education:** Bachelor's degree completed **Preferred Qualifications:** * Networking and cryptography knowledge * Agile methodologies * Technical English Employment Type: Full-time CLT or Freelance / PJ Compensation: R$2\.000,00 \- R$9\.000,00 per month Benefits: * Health insurance * Dental insurance * Life insurance * Meal allowance * Transportation allowance Work Location: Hybrid remote work for Alphaville, SP


