Senior Security Engineer - Threat Detection

About Nubank

Nubank was founded in 2013 to free people from a bureaucratic, slow, and inefficient financial system. Since then, through innovative technology and outstanding customer service, the company has been redefining people's relationships with money across Latin America. With operations in Brazil, Mexico, and Colombia, Nubank is today one of the largest digital banking platforms and technology-leading companies in the world.

Today, Nubank is a global company, with offices in São Paulo (Brazil), Mexico City (Mexico), Buenos Aires (Argentina), Bogotá (Colombia), Durham (United States), and Berlin (Germany). It was founded in 2013 in São Paulo, by Colombian David Vélez, and co founded by Brazilian Cristina Junqueira and American Edward Wible. For more information, visit www.nubank.com.br.

About the team

The Nubank Threat Detection team proactively hunts for security threats and builds relevant and robust detections to protect Customers and Nubankers. Also, we support our CSIRT on investigating threats, with a strong engineering power to decrease the time to act on threats through automation and by receiving valuable information from our internal Threat Intelligence team, acting as a true Security Operation Center. 

You can find more about Nubank Infosec here: 

https://blog.nubank.com.br/infosec-nubank-protecao-dados/

You will be responsible for

Act as the subject-matter expert, creating threat detection rules and actionable insights to identify, prevent, detect and respond to adversary activities. Work cross-functionally with security engineering, intelligence, infrastructure and data teams to build solutions for analyzing security events data at scale.
You'll partner with Defensive Security Operations and IT teams to build and deploy solutions that analyze security event data at scale. This is a critical role for an expert who can work across multiple disciplines to harden our defenses and ensure we are always one step ahead.

We are looking for a person who

Must Have:

• Good communication skills and be a real team player;
• Proficiency with security platforms including WAFs (Web Application Firewalls), Firewalls (e.g., Palo Alto, FortiNet), IDS/IPS (Intrusion Detection/Prevention Systems);
• Proficient in SIEM (Security Information and Event Management) and XDR (Extended Endpoint Detection and Response) systems;
• Proven experience in information security operations;
• Expertise in managing, analyzing and deriving insights from logs and other security-related data;
• Skills in utilizing and integrating threat intelligence feeds and applying them to improve threat detection;
• Proficiency in SQL for querying and managing security-related databases.
• Knowledge of cloud security principles and experience with securing cloud environments across different providers (e.g. AWS)
• Intermediate English.

Nice to Have:

• Defensive certifications such as CEH, GCIH or equivalent knowledge.
• Ability to create, modify and refine detection rules in Yara-L (2.0 desirable) in platforms such as Google SecOps SIEM (formally Chronicle);
• Skills in scripting languages as Python and Bash for automating security tasks and building custom tools;
• Proficient in Git/Github;
• Adept at incident response and mitigation, capable of handling and resolving security incidents effectively.
• In-depth understanding of network protocols, architecture, and security principles.
• Familiarity with endpoint security solutions and best practices for securing various types of endpoints (e.g., laptops, servers).
• Understanding of security policies, standards, and compliance requirements (e.g., PCI, SOX);
• Familiarity with deception technologies and techniques, including the deployment and management of honeypots and canaries;
• Experience with vulnerability assessment tools and methods for identifying and mitigating security vulnerabilities;
• Basic understanding of how artificial intelligence and machine learning can be leveraged for threat detection and response;
• Spanish would be a plus

Role location

NWW

Benefits

• Health, dental and life insurance
• Meal allowance
• Transportation assistance
• 30 days of paid vacation
• Equity at Nubank
• Parking partnership - discounted parking in our office
• Free bike parking with showers available
• NuCare - Our mental health and wellness assistance program
• NuLanguage - Our language learning program
• Gympass/Wellhub partnership
• Extended maternity and paternity Leaves  
• Child care allowance
• “Espaço Feijão” - Private nursing and breastfeeding spaces in our buildings
• Onsite Health Center - Medical support for every Nubanker in our office

Diversity & Inclusion

At Nubank, we want to ensure that we are building a diverse and inclusive workplace that reflects the customers we serve and seek to empower. That's why we hire based on equality. We consider gender, ethnicity, race, religion, sexual orientation, and other identity markers as key elements for our company, ensuring that none of them pose a barrier to recruiting talented individuals.