This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Coordenação de Segurança da Informação - Foco DevSecOps based in Brazil.
We are seeking an Information Security Coordinator specializing in DevSecOps to lead initiatives that integrate security throughout the software development lifecycle. In this role, you will guide teams, establish security standards, and promote secure-by-design practices across applications, APIs, integrations, and development pipelines. You will collaborate closely with technology squads to identify risks, prevent vulnerabilities, and improve security maturity through modern tools and methodologies. This opportunity is ideal for professionals passionate about application security, cloud environments, and building a strong security culture within innovative technology teams. You will play a strategic role in balancing security, agility, and business needs while supporting the evolution of secure digital solutions.
This position is listed on behalf of a partner company, who manages all applications and next steps. Our partner is looking for a Coordenação de Segurança da Informação - Foco DevSecOps based in Brazil.
We are seeking an Information Security Coordinator specializing in DevSecOps to lead initiatives that integrate security throughout the software development lifecycle. In this role, you will guide teams, establish security standards, and promote secure-by-design practices across applications, APIs, integrations, and development pipelines. You will collaborate closely with technology squads to identify risks, prevent vulnerabilities, and improve security maturity through modern tools and methodologies. This opportunity is ideal for professionals passionate about application security, cloud environments, and building a strong security culture within innovative technology teams. You will play a strategic role in balancing security, agility, and business needs while supporting the evolution of secure digital solutions.
Accountabilities:
- Lead and coordinate DevSecOps, Application Security (AppSec), and security support initiatives across development teams.
- Define security guidelines, standards, and best practices for applications, APIs, integrations, CI/CD pipelines, and software development processes.
- Support the implementation and evolution of security tools, including SAST, DAST, SCA, Infrastructure as Code (IaC) scanning, API security, and bot protection solutions.
- Partner with technology squads to identify, prioritize, remediate, and prevent application vulnerabilities.
- Promote a security-by-design culture, shift-left practices, and shared responsibility across engineering teams.
- Establish and monitor security maturity indicators, vulnerability coverage, recurrence rates, and remediation timelines.
- Support technical risk governance for applications, critical integrations, and regulatory security requirements.
- Drive continuous improvement initiatives related to secure software development and application protection.
- Collaborate with engineering, architecture, and technology leadership teams to strengthen overall information security practices.
- Bachelor’s degree in Administration, Systems Analysis, Computer Science, Information Systems, or related fields.
- Proven experience in Application Security (AppSec), DevSecOps, software security, or application architecture.
- Strong knowledge of OWASP principles, API security, CI/CD pipelines, secure coding practices, and vulnerability management.
- Experience implementing and integrating application security tools within agile development environments.
- Solid understanding of modern architectures, including microservices, cloud platforms, APIs, and secure development practices.
- Strong knowledge of SAST, DAST, and SCA concepts, implementation approaches, and adoption strategies.
- Experience working with technology teams and influencing security practices across development squads.
- Strong leadership, communication, collaboration, and problem-solving skills.
- MBA or specialization in Business Management, IT Management, Information Security, Cybersecurity, Project Management, Innovation Management, or related areas is considered a plus.
- Security certifications such as CSSLP, CISSP, AWS Security, or Azure Security are desirable.
- Experience in financial institutions or regulated environments is an advantage.
- Comprehensive medical insurance.
- Dental insurance.
- Child and childcare assistance.
- Meal and/or food allowance.
- Transportation allowance without employee discount.
- Private pension plan.
- Life insurance.
- Profit-sharing program.
- Individual Development Plan focused on career growth and professional development.
- Educational investment and continuous learning opportunities.
- Recognition programs celebrating employee contributions and milestones.
- Special dates and employee appreciation initiatives.
- Long-term relationship recognition program.
- Collaborative environment focused on cooperation, innovation, and personal growth.