About QuintoAndar:
QuintoAndar was born to do something very rewarding: open doors.
We opened doors for technology to be part of living.
And, through it, we simplify and reduce the bureaucracy of the experience of those looking for a new home.
Thus, we became the most valuable proptech in Latin America, leading the real estate market in around six countries and more than 75 cities around the globe.
The first steps in the international market have been taken since we acquired Grupo Navent, which is ranked number 1 in Mexico (Inmuebles24), Argentina (Zonaprop), Peru (Adondevivir & Urbania) and Ecuador (Plusvalia) - among others.
And most recently, we launched Benvi, our international brand in Mexico, which comes with our residential rental product and service.
We offer an end-to-end ecosystem to make life easier for those looking to rent or buy a home, sell a property and unlock a transaction.
Think of zero paper or bureaucracy: everything happens on a single platform, with transparency and speed alongside incredible human support.
We are currently valued at over $5.1 billion (August 2021) and continue to grow 4x year over year, breaking records.
To make all this happen, we have more than 4,000 talented people, working with cutting-edge technology and best design practices to ensure a seamless experience throughout the sales and rental process, combined with smart financial products.
Here you will work with the best professionals in the market, in an environment that breathes innovation, collaboration and high performance.
About working at QuintoAndar:
Possibility of learning;
Opportunity to work in a team that seeks to use the best practices and tools in the market;
Work in an informal environment with a horizontal structure;
Being part of a team working on a high-impact project that affects the lives of thousands of people.
Location & Remote Work
Our technology team works on the "remote-first" model, which means we are working from home with the possibility of living anywhere in Brazil.
We also have the option of using QuintoAndar's offices in São Paulo and Campinas or using partner coworking spaces, both up to twice a week.
Stages of the Selection Process
Our selection process currently lasts an average of 30-40 days, from application to completion of the assessment.
Going through:
Application & CV Screening
Tech Screening
Interviews with Engineering Team
Interview with Recruiter
Offer
About the Area and Responsibilities
Conduct regular penetration testing on corporate infrastructure, applications, and networks (including cloud environments) to identify and exploit vulnerabilities.
Develop and execute offensive security strategies to simulate real-world attack scenarios, providing insights into potential security weaknesses and paths to exploitation.
Automate offensive security processes, including vulnerability scanning, reconnaissance, and exploit deployment, to enhance testing efficiency and coverage.
Create detailed reports of findings and work closely with the incident response, SOC, and blue team to provide actionable recommendations for remediation.
Lead Red Team exercises, developing attack methodologies and leveraging the MITRE ATT&CK framework to improve detection and response capabilities.
Collaborate with various stakeholders to integrate offensive security findings into the broader security program, aligning with Zero Trust principles.
Stay up to date with the latest vulnerabilities, exploits, and offensive security tools to continuously improve the security posture of the organization.
Minimum Qualifications:
Strong hands-on experience with penetration testing tools and frameworks (5+ years).
Professional expertise in offensive security techniques, including vulnerability assessment, exploitation, and post-exploitation tactics.
Knowledge of modern exploitation techniques, web application vulnerabilities (OWASP Top 10), and network security weaknesses.
Familiarity with Zero Trust principles and how they apply to offensive security testing and hardening.
Experience conducting Red Team exercises and utilizing frameworks such as MITRE ATT&CK, Cyber Kill Chain and NIST.
Fluency in Portuguese and proficiency in English, especially for writing detailed reports, security documentation, and collaborating with global teams.
Offensive Security Certified Professional (OSCP) or similar certifications are highly desirable.
Important:
Our selection process starts with the application!
If you are truly interested in joining our team, make sure to put in extra effort at this stage.
We review all candidates individually and provide feedback even to those who do not proceed in the process;
All communication is done via email, so be attentive to our messages and whitelist the @quintoandar.com.br domain to prevent our emails from going to spam.
Diversity & Inclusion at QuintoAndar
At QuintoAndar, we believe diversity of perspectives and experiences guarantee a differentiated work environment, based on respect and valuing differences.
Feel free to declare the information on the registration form.
If you are not comfortable answering them, just choose the option "I prefer not to respond".
This information helps us create an increasingly inclusive environment and it is used only for this purpose, it is confidential, and it will not impact your performance throughout the hiring process.
#J-18808-Ljbffr