Match score not available

Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.

Start Your Free Trial Now!

Start my free trial

Security Champion | Senior

Remote: 
Full Remote
Experience: 
Senior (5-10 years)
Work from: 
Brazil

Offer summary

Qualifications:

Bachelor's degree or higher in IT or Information Security, Experience in programming languages, preferably JS, Familiarity with CI/CD pipelines and related tools, Knowledge of security frameworks and common vulnerabilities.

Key responsabilities:

  • Identify vulnerabilities in source code
  • Monitor secure coding processes
  • Conduct threat modeling and analysis
  • Educate and support developers on security practices

Compass.uol logo
Compass.uol XLarge
5001 - 10000 Employees
About Compass.uol
Compasso UOL is a Brazilian technology company owned by the UOL Group, which offers technology services, and provides state-of-the-art solutions, contributing to the digital transformation of its customers so they can become leaders in its sectors of activity. Compasso UOL is a company that cultivates people's talent and use state-of-the-art technologies such as Agile Development, Multicloud, Data&Analytics, Cyber Security, Artificial Intelligence/Machine Learning, APIs/Microservices, IoT and others, providing technology and knowledge that help customers in building digital solutions that enable the transformation and evolution of their business.
See all jobs

Job description

JOB DESCRIPTION

.


RESPONSIBILITIES AND ASSIGNMENTS

  • Identificar a vulnerabilidade em código fonte; 
  • Monitorar o processo de codificação segura; 
  • Analisar os resultados obtidos buscando um código cada vez mais seguro; 
  • Definir plano de correção das vulnerabilidades encontradas; 
  • Avaliar o resultado das ferramentas de análises de testes segurança como SAST, DAST e SCA; 
  • Realizar modelagem de ameaças; 
  • Utilizar frameworks de Desenvolvimento Seguro como projetos da OWASP (ASVS, SAMM, WSTG, MASVS); 
  • Realizar treinamentos e programas de conscientização em Segurança;
  • Levantar de requisitos de segurança (Arquitetônicos e de Desenvolvimento);
  • Apoiar desenvolvedores na resolução de vulnerabilidades e processos de guardrails de segurança (Gate de Segurança de Código);
  • Realizar a governança e acompanhamento das vulnerabilidades de código e de arquitetura.

REQUIREMENTS AND QUALIFICATIONS

  • Graduação em curso de nível superior, ou de curso de pós-graduação na área de Tecnologia da Informação ou Segurança da Informação; 
  • Experiência em linguagens de programação (Preferencialmente JS); 
  • Experiência em Pipelines CI/CD (Diferencial Azure Devops);
  • Experiência em ferramentas de scan de código fonte (Diferencial por Fortify, Dependency-Track e CheckMarx);
  • Comunicação com times multidisciplinares e proatividade; 
  • Habilidade analítica, atenção a detalhes; 
  • Conhecimento de falhas e erros comuns no desenvolvimento; 
  • Conhecimento em SSDLC, OWASP Top 10, GAP Analysis e frameworks de segurança; 
  • Conhecimento prático em modelagem de ameaças. 


Diferenciais: 

  • Certificações: CSSLP - Certified Secure Software Lifecycle Professional (preferencialmente), CompTIA Security+, Pentest+, DCPT, CEH, entre outras; 
  • Experiência em metodologias ágeis; 
  • Experiência com apresentações e treinamentos.


Não possui todos os requisitos para a vaga?


Está tudo bem! Na Compass UOL, estimulamos o desenvolvimento contínuo de novos talentos e transformamos desafios em oportunidades.


ADDITIONAL INFORMATION


#remote

"remote"


DREAM BIG WHEN IT COMES TO TECHNOLOGY. BE A COMPASSER! 🚀

Compass UOL is a global company that is part of AI/R, which drives the transformation of organizations through Artificial Intelligence, Generative AI, and Digital Technologies.


We design and build digitally native platforms using cutting-edge technologies to help companies innovate, transform businesses, and drive success in their markets. With a focus on attracting and developing the best talent, we create opportunities that improve lives and highlight the positive impact of disruptive technologies on society.


That's why our selection process goes beyond technical skills. Our goal is to find unique individuals with the potential to make an extraordinary impact on our clients.


We empower talent without borders and promote knowledge and opportunities in the latest market trends, driving significant results.


Join us and be part of the AI-driven digital revolution in the technology universe.


HOW OUR SELECTION PROCESS WORKS

1. ONLINE APPLICATION
Choose the opportunity that best fits your goals. Remember: having a well-detailed profile with your experiences and knowledge can make all the difference!
2. INTERVIEWS
Learn about our culture and company! During interviews, be present and do your best to share your expertise in a chronological and structured way.
3. EVALUATION
Our tests and assessments focus on finding talent with the cultural and technical fit for the position applied for.
4. FEEDBACK

Wait for our response regardless of the result! We have Gupy platform feedback certification.


Required profile

Experience

Level of experience: Senior (5-10 years)
Spoken language(s):
Portuguese
Check out the description to know which languages are mandatory.

Hard Skills

Vulnerability AssessmentsSecure Coding Best PracticesWeb Application FrameworksThreat ModelingGap AnalysisProgramming LanguagesCI/CDAgile MethodologyMicrosoft Security EssentialsTest Studio

Other Skills

  • Detail Oriented
  • Proactivity
  • Communication
  • Analytical Skills
Are you interested?

Related jobs

See more jobs