Key skills
AWSAzureCloudDistributed SystemsGoogle Cloud PlatformGraphQLMicroservicesGCPGoogle CloudAgileCommunicationCollaboration
About this role
Role Overview
- Establish and enforce secure design patterns, reference architectures, and integration standards that enable interoperability without introducing cross-product risk.
- Evaluate product architectures for security risks during the design stage (threat modeling) and drive remediation of identified issues.
- Serve as the security stakeholder for platform-level integration initiatives including shared identity services, API gateways, event buses, and data exchange layers.
- Coordinate security testing for platform components and cross-product interactions.
- Contribute to application security standards, guidelines, and secure coding practices and drive the implementation of these standards in platform product components.
- Partner with legal and compliance teams to ensure products meet applicable regulatory requirements (e.g., SOC 2, GDPR, HIPAA, PCI-DSS) without compromising interoperability goals.
- Escalate critical security risks with clear business context and recommended remediation paths.
Requirements
- 8+ years of experience in application security, software engineering, or a related field, with at least 3 years in an architecture or senior individual contributor role.
- Deep expertise in application security concepts: authentication and authorization, cryptography, input validation, API security, secrets management, and secure design principles.
- Demonstrated experience designing secure integration and interoperability patterns across distributed systems (microservices, REST/GraphQL APIs, event-driven architectures).
- Strong proficiency with threat modeling methodologies (STRIDE, PASTA, or equivalent) and security architecture review processes.
- Hands-on experience with application security tooling: SAST, DAST, SCA, container scanning, and secrets detection.
- Familiarity with cloud infrastructure security (AWS, Azure, or GCP).
- Strong written and verbal communication skills, with the ability to translate complex security risks into clear, business-relevant language for both technical and non-technical audiences.
Tech Stack
- AWS
- Azure
- Cloud
- Distributed Systems
- Google Cloud Platform
- GraphQL
- Microservices
Benefits
- A state-of-the-art facility with a fully stocked kitchen – only a 5-minute walk to/from Gare do Oriente.
- A hybrid work system supporting agile and flexible hours.
- Attractive compensation – including competitive base pay and performance-based variable pay.
- Equity/Stock in Intapp.
- Opportunity to travel to other development centers for product training and cross-site collaboration.
- One-time home office stipend.
- Generous paid parental leave (including adoptive leave), marriage leave, bereavement leave, carer's leave, and paid sick days.
- Meal allowance.
- Reimbursement for training towards continuing education.