Cybersecurity Engineer

Founded by experienced entrepreneurs and engineers in 2016, Pismo is a technology company that provides a comprehensive processing platform for banking, card issuing and financial market infrastructure and helps customers innovate and build the next generation of banking and payment solutions. Pismo joined Visa in 2024.

Leveraging Visa’s solutions, our core platform, and an expanding suite of capabilities, Pismo addresses the technological challenges that large banks, marketplaces, and fintech companies face in migrating from legacy systems to more advanced technology in the market. Pismo’s cloud-based platform empowers firms to build and launch financial products rapidly, scaling as they grow to have a broader audience while keeping high security and availability standards.

Pismo’s 500+ employees are located in more than 10 countries around the world.

As a DevSecOps Engineer at Pismo, you will be a key player in embedding security into every stage of our software development lifecycle. You’ll work closely with engineering, platform, and GRC teams to ensure our cloud-native infrastructure and applications are secure, scalable, and compliant with industry standards.

What you will do:

• Design and implement security controls in CI/CD pipelines (Shift Left).
• Integrate SAST, SCA, and DAST tools into development workflows.
• Collaborate with developers to remediate vulnerabilities early in the lifecycle.
• Manage and monitor cloud security configurations (AWS, EKS, IAM, GuardDuty).
• Develop and maintain infrastructure-as-code (Terraform) with security best practices.
• Support red team exercises and penetration testing remediation.
• Ensure compliance with PCI DSS and secure handling of sensitive data (e.g., PAN, PII).
• Contribute to threat modeling, risk assessments, and incident response planning.

This is a remote position. A remote position does not require job duties be performed within proximity of a Visa office location. Remote positions may be required to be present at a Visa office with scheduled notice. #LI-Remote

Minimum qualifications:

• 2+ years of relevant work experience with a Bachelor’s Degree OR 5+ years of relevant work experience
• Previous experience with DevSecOps process or configuration of CICD pipelines
• English proficiency: B1+ – You’ll need to be comfortable joining weekly team meetings in English.
• Good knowledge of security best practices
• Familiarity with scanning tools like Checkmarx, SonarQube, or similar
• Be based in Brazil

Nice to have:

• Bachelor’s degree completed in Computer Science, Information Systems, Software Engineering, or related fields (If not completed, expected graduation by the end of 2025 or early 2026)
• Familiarity with PCI DSS
• Experience with threat modeling
• Experience working with AWS
• Development experience
• Terraform and YAML language

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.