DevSecOps Engineer (Fintech)

TL;DR

DevSecOps Engineer (Fintech): Responsible for embedding security by default across development and operations workflows, with an accent on designing, implementing, and maintaining secure cloud infrastructure and CI/CD pipelines. Focus on strengthening the security posture in AWS and GCP, automating security controls through infrastructure as code, and ensuring compliance with industry standards like PCI DSS and SOC 2.

Location: Individual Contributor, must be based in LATAM (Argentina, Colombia, Chile, Mexico, Puerto Rico).

Company

hirify.global is building a high-performance payment orchestrator to enable global market participation for companies with seamless payment integrations worldwide.

What you will do

• Design, implement, and maintain security controls integrated into SDLC, CI/CD pipelines, and cloud environments.
• Collaborate with Engineering and DevOps teams to secure cloud infrastructure, Kubernetes clusters, and containerized workloads.
• Implement and maintain security configurations in AWS and GCP (e.g., IAM, WAF, GuardDuty, Security Groups).
• Automate security processes and controls using scripting and infrastructure as code.
• Ensure DevSecOps practices align with compliance frameworks such as PCI DSS, ISO 27001/27701, and SOC 2.
• Explore and evaluate emerging technologies and architectures to ensure secure adoption.

Requirements

• 4+ years of hands-on experience in DevSecOps, security engineering, or similar technical security roles.
• Strong experience integrating security controls into CI/CD pipelines and development workflows.
• Solid knowledge of AWS and GCP and its security services (e.g., IAM, WAF, GuardDuty, Security Hub, Security Groups).
• Experience with containerization and orchestration technologies such as Docker and Kubernetes.
• Hands-on experience with infrastructure as code (e.g., Terraform, CloudFormation).
• Proficiency in programming or scripting languages such as Python and/or Golang.
• Practical experience applying compliance frameworks (e.g., PCI DSS, ISO 27001/27701, SOC 2).
• Verbal and written English fluency (C1).

Nice to have

• Experience with application security testing and familiarity with OWASP Top 10.
• Experience with security automation and internal tooling.
• Familiarity with observability, logging, and monitoring tools in cloud environments.
• Security certifications (e.g., AWS Certified Security – Specialty, Security+, CISSP, OSCP).

Culture & Benefits

• Competitive Compensation.
• Remote work (LATAM only).
• Home Office Bonus and work equipment.
• Stock options.
• Health Plan wherever you are.
• Flexible Days off.
• Language, Professional and Personal growth courses.