Mirella Silveira
Toronto
Summary
Experienced cybersecurity professional with over 7 years in IT and 5+ years dedicated to cloud and DevSecOps security. Proven success in securing cloud-native applications, driving cloud transformation, and integrating security into CI/CD pipelines. Skilled in CNAPP, CSPM, automation with Terraform and Python, and risk remediation in fast-paced environments.
Overview
5
5
years of professional experience
1
1
Certification
Work History
Senior Cloud Security Engineer
PagBank
01.2024 - Current
- Lead implementation of cloud security strategies for multi-cloud infrastructures, including GCP, AWS, Azure, and OCI.
- Designed and automated Terraform modules to enforce secure infrastructure provisioning.
- Triaged CNAPP findings and collaborated across engineering, risk, and security teams to ensure proper mitigation.
- Integrated DevSecOps practices into CI/CD pipelines, reducing security exposure and remediation time.
- Provided CSPM oversight using tools like Prisma Cloud, ensuring continuous compliance across environments.
- Delivered process documentation, security guidance, and technical reporting for leadership and dev teams.
Information Security Analyst
Bradesco
09.2022 - 01.2024
- Enhanced cloud security posture by reviewing code and identifying misconfigurations and high-risk assets.
- Participated in threat modeling and remediation planning with infrastructure and DevOps teams.
Cyber Security Analyst
Empiricus
12.2021 - 09.2022
- Supported security assessments and privacy strategies aligned with LGPD and ISO 27001.
Information Security Analyst
GLOBAL HITSS
05.2020 - 12.2021
- Collaborated with engineering teams to implement secure access control and system hardening measures.
Advisory Services (InfoSec & Risk)
Italtel
01.2020 - 05.2020
- Led risk analysis and compliance projects aligned with ISO/IEC standards.
Education
MBA - Software Engineering
USP/ESALQ
10.2024
MBA - Information Technology
FIAP
03.2023
Executive Program - Cybersecurity
FGV
01.2021
Bachelor - IT Management
FATEC-SP
01.2021
Skills
- Cloud Security (AWS, GCP, Azure, OCI)
- CNAPP, CSPM, CWPP (Tenable and TrendMicro)
- DevSecOps CI/CD Security (GitHub, GitLab and Jenkins)
- Infrastructure as Code (Terraform, Python, Shell Script)
- Security Automation & Vulnerability Management
- Agile Risk Assessment ISO 27001 NIST OWASP MITRE
- Security incident response
- Identity and Access management
Certification
- - Microsoft Azure Fundamentals
- - ISO 27001:2013 Lead Auditor
- - ITIL Foundations
- - GCP PCSE (Preferred - actively pursuing)
- - EF SET C1 Advanced (English)
Languages
Portuguese (Native) | English (Professional) | Spanish (Basic)
READY TO DRIVE YOUR CLOUD SECURITY VISION
Available for interviews. Open to hybrid or remote roles across North America.
Timeline
Senior Cloud Security Engineer
PagBank
01.2024 - Current
Information Security Analyst
Bradesco
09.2022 - 01.2024
Cyber Security Analyst
Empiricus
12.2021 - 09.2022
Information Security Analyst
GLOBAL HITSS
05.2020 - 12.2021
Advisory Services (InfoSec & Risk)
Italtel
01.2020 - 05.2020
MBA - Information Technology
FIAP
Executive Program - Cybersecurity
FGV
Bachelor - IT Management
FATEC-SP
MBA - Software Engineering
USP/ESALQ
Similar Profiles
Bruno FaustinoBruno Faustino
Executivo de contas pleno at PagBankExecutivo de contas pleno at PagBank
Danilo BenícioDanilo Benício
Agile Master at PagBankAgile Master at PagBank
Marcelo OmotoMarcelo Omoto
Senior Software Engineer at PagBankSenior Software Engineer at PagBank
Keshav InderjeetKeshav Inderjeet
Data Architect at Axciom Salesforce Practice (Formerly Rafter One)Data Architect at Axciom Salesforce Practice (Formerly Rafter One)
Andy LinAndy Lin
Piano Accompanist at Freelance WorkPiano Accompanist at Freelance Work