Especialista em Desenvolvimento de Software - Platform Engineer - API & Identity
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for an Especialista em Desenvolvimento de Software - Platform Engineer - API & Identity based in Brazil.
This role is an opportunity to design and evolve the foundations that enable secure, scalable, and reliable digital platforms.
You will work within a Developer Experience team, building solutions that empower engineering teams to deliver faster while maintaining strong security standards.
The position focuses on API exposure, identity management, authentication, authorization, and platform architecture.
You will collaborate closely with engineering, cybersecurity, and product teams to create secure-by-default experiences.
The role combines hands-on software engineering with architectural decision-making and technical leadership.
You will contribute to improving how products connect with external clients, integrations, and emerging technologies.
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for an Especialista em Desenvolvimento de Software - Platform Engineer - API & Identity based in Brazil.
This role is an opportunity to design and evolve the foundations that enable secure, scalable, and reliable digital platforms.
You will work within a Developer Experience team, building solutions that empower engineering teams to deliver faster while maintaining strong security standards.
The position focuses on API exposure, identity management, authentication, authorization, and platform architecture.
You will collaborate closely with engineering, cybersecurity, and product teams to create secure-by-default experiences.
The role combines hands-on software engineering with architectural decision-making and technical leadership.
You will contribute to improving how products connect with external clients, integrations, and emerging technologies.
Accountabilities:
- Lead the evolution of API Gateway capabilities, including secure exposure layers, rate limiting, schema validation, and self-service onboarding of new APIs.
- Define and evolve authentication and authorization architectures for externally exposed APIs using standards such as OAuth2, OIDC, and JWT.
- Design security guardrails for public-facing integrations and agent-based protocols, ensuring authentication, access control, usage limits, and abuse prevention.
- Establish authorization patterns between internal services, including mTLS and service-to-service access policies.
- Build reusable libraries, frameworks, and components that allow product teams to expose APIs securely by default.
- Act as a technical partner for Cybersecurity and Application Security teams, aligning external exposure strategies and security requirements.
- Identify, prioritize, and address security gaps before they become operational risks.
- Review product team architectures involving external services, ensuring appropriate authentication and authorization practices.
- Contribute to broader platform, backend, messaging, and security architecture initiatives as the platform evolves.
- Promote engineering best practices focused on scalability, reliability, and secure software development.
- Proven experience as a Platform Engineer or Senior Software Engineer building tools, infrastructure, or platforms consumed by other teams.
- Experience designing and managing API Gateway solutions such as Kong, Apigee, AWS API Gateway, or similar technologies.
- Strong knowledge of authentication and authorization patterns for external APIs, including OAuth2, OIDC, JWT, and key rotation.
- Experience implementing service-to-service authorization in distributed environments, including mTLS.
- Knowledge of secure software development practices and OWASP principles, especially for externally exposed applications.
- Experience designing microservices architectures and event-driven systems.
- Experience creating scalable, reusable engineering solutions.
- Bachelor’s degree in Computer Science, Software Engineering, Information Systems, or related fields.
- Experience exposing MCP servers or similar protocols for AI agent integrations.
- Previous experience working with Cybersecurity or Application Security teams.
- Knowledge of VPC Lattice, ECS Service Connect, service mesh, or similar technologies.
- Advanced English and/or Spanish skills.
- Meal and food allowance through Flash card.
- Medical and dental insurance.
- Total Pass membership for physical wellness.
- Home office allowance through Flash card.
- Mental health support program.
- Education assistance through professional development programs.
- Group life insurance.
- Extended maternity leave of 6 months.
- Extended paternity leave of 30 days, including equal application for same-sex couples.
- Vacation eligibility after 6 months.
- Birthday day off.
- Inclusive and diverse work environment that values individuality and collaboration.
The Platform Engineer will be responsible for designing and evolving platform capabilities that enable secure service exposure and improve engineering productivity. This role requires strong technical ownership, security awareness, and the ability to create reusable solutions consumed by multiple teams.
Requirements:
The ideal candidate should have strong experience in software engineering, platform development, and secure architecture. The role requires expertise in APIs, identity management, distributed systems, and the ability to build infrastructure solutions that support multiple engineering teams.
Nice-to-have qualifications: