← CarreiraAI
Greenhouse
Cyber Security Specialist | AppSec
Ebanx · Curitiba | On-site
Publicada em 12/06/2026
Candidatar-se com o CarreiraAI →
p EBANX is one of the most successful fintechs to emerge from Latin America — and today, we are building a truly global payments company. Our mission has remained constant from day one: to unlock access and enable companies and consumers to participate in the digital economy, no matter where they are. br br What started as a bold vision has grown into a platform that connects some of the world’s largest digital businesses with customers across 21 of the fastest-growing markets. We operate where complexity exists — turning local challenges into global opportunities, and building the infrastructure that allows payments to move further, faster, and smarter. br br We are a team of builders and problem-solvers. We think globally, act with curiosity, and believe diversity of thought is a competitive advantage. /p p As EBANX enters its next phase of hyper growth, we are looking for people who want to shape the future of payments, expand what’s possible, and help connect businesses and consumers across borders. br Let’s build what’s next — together. /p p At EBANX’s IT team you don’t just manage systems and infrastructure. You ensure that our technology, which connects millions of people to global companies, runs flawlessly every day. Here, every solution you create has a direct impact on the revolution of digital payments, making our work truly nbsp; strong Out Of The Ordinary /strong . /p h3 strong What your day-to-day will look like /strong /h3 ul li data-path-to-node= 3,0,0 Lead the AppSec strategy and technical mentorship span class= , /span span class= guiding Junior, /span span class= Mid-level, /span span class= and Senior analysts in performing deep-dive security assessments and complex remediation; /span /li li data-path-to-node= 3,1,0 Architect and oversee Threat Modeling sessions span class= across diverse product squads to identify architectural flaws and security requirements early in the design phase; /span /li li data-path-to-node= 3,2,0 Drive global security projects span class= and communicate risk effectively in English to international stakeholders, /span span class= ensuring that security initiatives align with business velocity; /span /li li data-path-to-node= 3,3,0 Manage the lifecycle of security vulnerabilities span class= discovered through /span SAST, DAST, and SCA span class= , /span span class= providing actionable insights and polyglot code-fix guidance to engineering teams. /span /li /ul h3 strong What you need to shine in this role /strong /h3 ul li data-path-to-node= 5,0,0 Deep expertise in the AppSec Tooling ecosystem, including hands-on experience configuring and tuning SAST (Static Analysis), DAST (Dynamic Analysis), and SCA (Software Composition Analysis) within CI/CD pipelines; /li li data-path-to-node= 5,1,0 Strong command of API Security and Secret Management, with a proven track record of securing REST/GraphQL APIs and implementing robust policies for tokens, certificates, and secrets (e.g., HashiCorp Vault, AWS Secrets Manager); /li li data-path-to-node= 5,2,0 Multi-language coding proficiency, capable of reviewing and securing code across various stacks (such as Java, Python, Go, Node.js, or .NET) to support diverse development teams; /li li data-path-to-node= 5,2,0 Advanced to Fluent English communication, enabling you to lead technical discussions, document global standards, and collaborate with distributed teams worldwide. /li /ul h3 strong Bonus points if you have /strong /h3 ul li data-path-to-node= 7,0,0 Advanced Security Certifications such as OSWE, CASE, CSSLP, or CISSP, demonstrating a high level of professional dedication; /li li data-path-to-node= 7,1,0 Experience automating custom security guardrails or building internal tools to automate the triaging of secrets and vulnerabilities at scale; /li li data-path-to-node= 7,2,0 Active participation in the security community, whether through Bug Bounty programs, open-source security projects, or speaking at conferences like OWASP Global
Candidatar-se com o CarreiraAI →