Grupo QuintoAndar - Staff Platform Security Engineer

About Grupo QuintoAndar

We are Grupo QuintoAndar, the largest real estate ecosystem in Latin America. Guided by a shared purpose of helping people love where they live, we have a diversified portfolio of brands and solutions across different countries in Latin America, covering all phases of the housing journey. We also have a Technology Hub in Portugal. We develop technology and innovation to transform and enhance the overall living experience.

With the support of a world-class team of investors and advisors, including Kaszek, Qualcomm, General Atlantic, and SoftBank, Grupo QuintoAndar is currently valued at over USD 5.1 billion and continues to grow year over year.

Here, you will work with top professionals in the market, in an environment that breathes innovation, collaboration, and high performance. To learn more about our story, visit: https://grupoquintoandar.com/pt/.

Location & Remote Work for technology and remote-first roles

Our technology team operates under a "remote-first" model, which means we work from home and can live anywhere in Brazil. We also offer the option of working from our São Paulo offices or partner coworking spaces, up to twice a week.

Hiring Process Stages

The stages of our hiring processes aim to assess your experiences and allow you to meet our teams and explore career opportunities. They are structured as follows:
People interview

• Tech screening
• Tech interview 1
• Tech interview 2
• Hiring Comittee

About the Team

Join QuintoAndar’s core engineering team to focus on building and evolving our security platform. As a Software Engineer on the Platform Security team, you’ll play a key role in designing, developing, and maintaining scalable, user-friendly tools and automations that enable our software engineers to build and deliver products quickly and securely.

Key Responsibilities

Security Strategy and Architecture

• Define and refine the platform’s security strategy, aligning it with business objectives and compliance requirements.
• Design and lead the practical implementation of resilient security architectures for critical systems in cloud-native environments.
• Establish security engineering standards through code, particularly for infrastructure as code (Terraform), containers, CI/CD pipelines, gates, and guardrails.
• Conduct threat modeling and security design reviews for systems and new platform features.

Development and Automation

• Develop and maintain security platforms, automation tools, libraries, and reusable internal frameworks for the entire organization.
• Integrate security throughout the entire development cycle (shift-left and Security by Default), implementing secure CI/CD pipelines with automated testing (SAST, DAST, SCA) and remediation tools.
• Use technologies such as Terraform, Go, and Python to enhance security maturity by developing and deploying tools and platforms, effectively and scalably ensuring multi-layered security (software development, applications, and infrastructure).

Operations, Governance, and Technical Leadership

• Act as a technical security expert for the engineering teams, mentoring other engineers on secure development practices and DevSecOps.
• Actively participate in incident response and security post-mortems.
• Collaborate with SRE, Software Engineering, and Product teams to influence architectural decisions, taking into account the trade-offs between security, performance, and usability.

Essential Qualifications

• Over 6 years of experience in software development and information security, with a focus on platforms.
• Solid experience with cloud providers (AWS, GCP, or Azure) and their respective security services.
• Proven proficiency in programming languages such as Python or Go for automation and tool development. Java is a plus.
• Proficiency in Infrastructure as Code (IaC), particularly with Terraform.
• Proficiency in DevSecOps practices and hands-on experience integrating security into CI/CD pipelines.
• In-depth knowledge of container security and orchestration (Kubernetes).
• Ability to solve complex and systemic problems, and excellent verbal and written communication skills.

Desirable Qualifications

• Knowledge of software architecture, microservices, and APIs.
• Familiarity with compliance frameworks such as SOC 2, ISO 27001, and LGPD/GDPR.
• Experience with threat modeling frameworks such as MITRE ATT&CK.
• Knowledge of programming languages, preferably Go, Python, and Java.
• Advanced or fluent English.

Important

• Our hiring process starts with the application! If you truly want to be part of our team, please complete this step of the process. We analyze all candidates individually and provide feedback to all applicants.

• All communication will be conducted via email, so please stay tuned for our messages and release the domain @quintoandar.com.br to ensure our emails are not sent to spam.

Benefits

• Competitive salary
• Profit sharing
• Meal allowance 
• Health insurance
• Dental plan
• Life insurance
• Childcare subsidy and Atypical Parenthood subsidy
• Wellhub
• Home office allowance
• Employee assistance program (mental health, social, legal, and financial support)
• Extended parental leave
• Day off on birthday, Mother’s Day, and Father’s Day
• Benefits Club (discounts on everyday services)
• Discounts at educational institutions
• Reading kit for children – PlayKids
  
  

Diversity & Inclusion at Grupo QuintoAndar

We value diversity and want everyone to feel welcome here, regardless of their age, gender identity, sexual orientation, race, color, ethnicity, origin, disability, religion, or any other characteristic. All our job openings are open to all individuals!

You'll notice there are some diversity questions in the application form. For affirmative action roles, this information may be used to verify your alignment with the target audience for the opportunity. In such cases, it may be used for elimination purposes. For non-affirmative action roles, this data will be used anonymously, exclusively to monitor and improve our inclusion practices in the hiring process, and will have no impact on your application.

Privacy and Data Protection

The Grupo QuintoAndar operates in compliance with privacy and data protection laws, including, but not limited to, the Brazilian General Personal Data Protection Law (LGPD) (Law No. 13,709/2018), and ensures the security of your data. To learn more, please access our Privacy Notice for Candidates. For questions or to exercise your rights as a data subject, please contact us through our Service Channel.

#LI-FS4