Plus
Включить Plus
Назад
Company hidden
6 часов назад

Security Engineer (AI/Fintech)

Формат работы
remote (только Brazil)
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
Brazil
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Security Engineer (AI/Fintech): Designing and implementing product and infrastructure security for an AI Risk Decisioning platform with an accent on threat modeling, authentication systems, and LLM security. Focus on building an AppSec program from the ground up, creating prompt-injection defenses, and ensuring SOC 2/PCI compliance.

Location: Remote (Must be based in Brazil)

Company

hirify.global is building an advanced AI Risk Decisioning Platform that helps banks and fintechs manage fraud, credit, and compliance risk.

What you will do

  • Own threat modeling for core platform APIs, risk decisioning systems, and agentic AI products.
  • Design and deploy authentication, authorization (RBAC), and SSO/SAML/OAuth systems across the platform.
  • Establish the AppSec program from scratch, implementing SAST (Semgrep), SCA, and container scanning.
  • Build security guardrails for LLM usage, including prompt-injection defenses and output validation.
  • Drive the security incident process, vulnerability triage, and responsible-disclosure workflows.
  • Collaborate with engineering teams to embed security early in the feature design process.

Requirements

  • 5+ years of software engineering experience, with 3+ years focused on application or product security.
  • Proficiency in Java and/or Python for conducting security code reviews.
  • Experience with SSO, SAML, OAuth 2.0, JWT, and multi-tenant authorization.
  • Working knowledge of AWS security primitives (IAM, KMS, VPC) and Kubernetes.
  • Experience providing technical evidence for SOC 2, PCI, or ISO 27001 audits.
  • Must be located in Brazil for CLT employment.

Nice to have

  • OSCP, CISSP, or a meaningful bug-bounty track record.
  • Prior experience building or tuning SAST rules using Semgrep or CodeQL.

Culture & Benefits

  • Remote-first culture with a family-friendly environment and regular team offsites.
  • 100% coverage of Medical and Dental insurance for employees and dependents.
  • 100% Life and LTD insurance (Prudential).
  • Monthly meal allowance provided via Caju Card.
  • Competitive salary and stock options.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →