Senior Security Infrastructure Engineer (Fintech)

TL;DR

Senior Security Infrastructure Engineer (Cybersecurity): Strengthening security posture across cloud infrastructure, applications, and developer workflows with an accent on vulnerability management, detection engineering, and supply chain security. Focus on building SIEM/XDR capabilities, implementing CI/CD hardening, and resolving real-world security incidents at scale.

Location: Must be based in Latin America

Salary: $5,000 - $9,500 per month (Gross in USD)

Company

hirify.global is a fintech company revolutionizing the shopping experience through interest-free installment plans and innovative retail technology.

What you will do

• Lead and operate vulnerability management across infrastructure, platforms, and applications, including scans and dependency analysis.
• Build and mature SIEM/XDR capabilities, covering log ingestion, detection rule development, and investigation workflows.
• Investigate and respond to security incidents across AWS and Kubernetes infrastructure, performing root cause analysis.
• Design detection strategies for suspicious activity and data exfiltration using application and database telemetry.
• Drive infrastructure and CI/CD hardening to reduce software and container supply chain risks.
• Implement security controls aligned with PCI DSS, SOC 2, and other compliance requirements.

Requirements

• 6+ years of experience in security, software, or infrastructure engineering.
• Hands-on experience securing cloud-based production systems, specifically within AWS and Kubernetes.
• Proficiency with SIEM platforms (e.g., Wazuh, Splunk, ELK) and vulnerability scanners (e.g., Snyk, Trivy, Grype).
• Experience contributing to threat modeling and security design reviews for modern systems.
• Ability to investigate security issues directly using logs, cloud tooling, and system-level data.
• Must be located in Latin America.

Nice to have

• Experience designing and tuning detection rules to reduce alert noise.
• Strong understanding of cloud-native security controls, including IAM and network segmentation.
• Experience designing secure CI/CD workflows to reduce exposure to vulnerable dependencies.
• Experience using automation and AI to improve efficiency in security operations.

Culture & Benefits

• High degree of ownership and autonomy to identify risks and drive security improvements.
• Opportunity to shape and scale security capabilities in a fast-paced environment.
• Modern tech stack including Golang, Typescript, Python, and AWS.
• Culture that values calculated risk-taking, candor, and relentlessly high standards.
• Focus on using open-source solutions and building internal tools before buying.