SecOps Engineer

About Tala At Tala, we’re applying advanced technology and human creativity to solve what legacy institutions can’t or won't. We are a global financial infrastructure company on a mission to unleash the economic power of the global majority, recognizing that today’s financial infrastructure doesn’t work for most of the world’s population. We’re the first and only platform to combine the intelligence of a credit bureau, the payments execution of a fintech, and the relationship expertise of a bank into one vertically integrated solution. Our platform is powered by an expansive moat of proprietary data and AI/ML decisioning technology, enabling us to deliver instant, reliable liquidity personalized to every customer's needs. Through our flagship credit app, we’ve disbursed over $7 billion in credit to more than 12 million customers across Latin America, Southeast Asia, and East Africa. These customers have leveraged Tala products to start and expand small businesses, manage day-to-day needs, and pursue their financial goals. Our pioneering work and proven impact have earned us consistent recognition, including being named to: CNBC’s Disruptor 50 for five years. CNBC’s World's Top Fintech Companies for two consecutive years. Forbes’ Fintech 50 list for nine consecutive years. Visionary investors, persuaded by the economic power of the global majority, have committed half a billion dollars in equity and debt to Tala's success. Given the global nature of our team, we operate on a remote-first approach with office hubs in Santa Monica, CA (HQ); Nairobi, Kenya; Mexico City, Mexico; Manila, the Philippines; and Bangalore, India. Most Talazens join us because they connect with our mission. If you are energized by the impact you can make at Tala, we’d love to hear from you! About the Role We are looking for a SecOps Engineer to design, implement and maintain suitable infrastructure and application security solutions on AWS and GCP public cloud environments using DevSecOps mindset. You will bring world class cloud-native security expertise to implement solutions for security configuration hardening, vulnerability management, detection, protection and monitoring of security threats and intrusions, in an automated fashion. What You'll Do

Drive the design and implementation of defense-in-depth infrastructure and application security solutions for our customer facing SaaS platform in AWS & GCP public cloud environments

Drive architecture, implementation, configuration and automation of native and third party cloud security solutions for hardening, detection, prevention, logging and response solutions for security vulnerabilities and threats

Work closely with Product, Engineering and IT in a DevSecOps model on technologies like FWs, ACLs, WAFs, IAM roles and permissions, Vulnerability management and hardening, Threat and Intrusion detection, Kubernetes Container Security solutions

Assist in incident response and triaging activities as needed for security incidents and events

What You'll Need

B.S. Degree in Computer Science or related field or equivalent combination of professional development training and experience

3-5 years of previous experience deploying and administering security infrastructure in GCP or AWS public cloud environments, using Infrastructure as Code required

In-depth hands-on experience with at least one public Cloud platform (AWS or GCP) with advanced knowledge of securing IaaS platforms and services like WAFs, Security Groups, EC2/Compute, EKS/GKE, ECR/GCR, S3/Cloud Storage, RDS/Cloud SQL, Logging and Monitoring

Prior experience working closely with Product, DevOps and CloudOps' Site Reliability Engineers on shift-left strategies, CI/CD tools and solutions needed

Security experience in a cloud native environment in one or more areas: authentication, access management, API security, Linux security, vulnerability scanning, threat and intrusion detection, firewalls, WAF, encryption technologies, container security etc.

Experience using a programming language such as Python for automation (would be a plus)

Security certifications such as AWS, GCP , CISSP, CEH, OSCP preferred

Excellent verbal and written communication skills and ability to document and explain technical details and concepts clearly and concisely

Agility and willingness to deal with a high level of ambiguity, change, and pressures of high-profile incidents

Flexibility to pitch in where needed across program and team

Strong influence and teamwork skills; sound problem resolution, judgment, negotiating, and decision-making skills

Strong knowledge of industry standards, vulnerability classifications, and attack vectors

Experience working effectively with global teams in multiple time zones