Information Security Manager at Félix

Remote - Brazil

Apply
More jobs at Félix

Information Security Manager role at Félix, a hyper‑growth Series B fintech focused on remittances for Latin immigrants in the U.S. The position is remote, full‑time, and involves leading the security program, working with cloud‑native environments, compliance frameworks, vulnerability management, and security‑by‑design integration within the engineering team.

Requirements

Experience

  • Proven experience managing or building information security programs in cloud-native environments (preferably GCP).
  • Strong knowledge of compliance frameworks such as SOC 2, PCI-DSS, ISO 27001, and NIST.
  • Demonstrated experience with vulnerability management, risk assessment, and security architecture.
  • Familiarity with security design for modern SaaS or FinTech environments.
  • Excellent communication and stakeholder management skills, with the ability to translate complex technical issues into clear business context.
  • Leadership experience guiding and mentoring security or technical teams.

Skills

  • Information security program management
  • Cloud-native environments
  • GCP
  • Compliance frameworks (SOC 2, PCI‑DSS, ISO 27001, NIST)
  • Vulnerability management
  • Risk assessment
  • Security architecture
  • Security design for SaaS/FinTech
  • Communication
  • Stakeholder management
  • Leadership

Languages

  • Portuguese

Responsibilities

  • Conduct a comprehensive review of Felix Pago’s current security posture, identifying stakeholders, dependencies, and areas for improvement.
  • Perform risk assessments and gap analyses to evaluate existing controls and prioritize areas for remediation.
  • Develop and execute a prioritized security roadmap aligned with company objectives and compliance requirements.
  • Review, update, and enhance security policies and procedures, ensuring alignment with frameworks such as SOC 2, PCI-DSS, ISO 27001, and NIST.
  • Define measurable metrics and reporting mechanisms to monitor and communicate security maturity and effectiveness.
  • Lead vulnerability management, threat analysis, and incident response activities to ensure continuous improvement of the security program.
  • Partner with Damian Finol and other engineering leaders to integrate security‑by‑design principles into infrastructure, CI/CD pipelines, and product development.

Technologies

GCPDefectDojoSOC 2PCI-DSSISO 27001NISTDevSecOpsCI/CD integrationcloud-native security toolsAIblockchainstablecoins

See if your resume is ready for this job

See how our AI can optimize your resume and improve your chances for this role.