← All verified jobs

Security Engineer

arq group São PauloRemoteFullTime

See all open roles at arq group

Ghost-risk verdict

Likely real

  • 60 open roles at this company in 30 days (mass-hiring blitz)
  • no salary disclosed (correlates with ghost postings)

How we score ghost risk →

See your fit for this role and apply with a truthfully tailored résumé.

See my fit, free

About the role

About ARQ

ARQ is one of the fastest-growing fintechs in the world. Our mission is to redefine how people interact with money across borders, building the infrastructure to move value seamlessly. We're still early in our journey, which means every person who joins shapes the future of our product, culture, and growth. If you're excited by big challenges, global impact, and the chance to grow fast with a world-class team, ARQ is the place to do it.

What you'll do

Build and maintain SIEM detection rules, alert pipelines, and response playbooks (Datadog SIEM, CrowdStrike, Cloudflare), owning detection coverage for a defined set of systems end-to-end

Support incident response: triage alerts, execute IR playbooks, and help run tabletop exercises

Help operate DLP and data protection controls across Google Workspace, Slack, and internal tooling – owning day-to-day monitoring and tuning

Conduct cloud security assessments across AWS and Kubernetes environments under the guidance of senior team members

Support application security work: threat modelling sessions, secure code review, API security testing, and CI/CD pipeline checks

Help review and monitor AI/agentic workflows for prompt risks, unsafe automated actions, and data exposure

Execute vendor security assessments using the established due diligence framework, owning the review process for a portion of the vendor pipeline

What you'll need

2–4 years in information security or a closely related technical role (security operations, cloud/infra engineering with a security focus, or similar)

2+ years at a regulated fintech/bank/payment company

Working experience with at least one cloud environment (AWS preferred) and familiarity with Kubernetes fundamentals

Exposure to SIEM platforms and an interest in detection engineering – you've written or tuned at least a few detection rules

Basic familiarity with application security concepts: threat modelling, secure code review, or API security testing

Some experience with endpoint security tooling (EDR/XDR) or identity & access management in a SaaS environment (Google Workspace, Okta/Cloudflare Access, SSO)

Curiosity about AI/agentic tooling risks (LLM integrations, MCP servers, automated workflows) – prior hands-on experience is a plus, not required

Strong written and verbal communication

Business fluent in English

Benefits

Competitive salary and benefits

Stock options, so you own part of what you build

Discretionary performance bonus

The latest tools and technology

A world-class team that will challenge and grow your skills

The opportunity to help build the best fintech app in Latin America

Office Policy: 3-4 days a week in-office

Stop applying to ghosts.

OyaPilot surfaces only verified, real jobs, scores your fit, and tailors your application truthfully.