1.073 Ofertas de Cissp en Argentina

Vení a protagonizar la evolución de los medios de pago

Somos la empresa líder en medios de pago de la Argentina, y nos une un gran desafío: crear soluciones que conecten el ecosistema para simplificar el día a día de las personas.

¿Querés sumarte al #EquipoPrisma como
Data Protection and Information Security Engineer?
Entonces seguí leyendo

Este es el desafío que te proponemos:

• Desarrollar, implementar y mantener las políticas de protección de información en los distintos entornos tecnológicos de la empresa.
• Evaluar los controles y las actividades relacionadas con la protección de los datos tanto de negocios como personales definiendo mejoras aplicables.
• Contribuir con los puntos de control y entregables estándares relacionados con la protección de los datos, proporcionando revisiones, identificando riesgos y recomendando mejoras.
• Desarrollar tableros de control y monitoreo que permita contar con información del estado de protección de la información corporativa.
• Implementar soluciones de protección de datos en función de su clasificación y la necesidad de saber o conocer de los distintos sectores de la organización.

¿Qué skills necesitas?

• Experiencia práctica de aplicación de seguridad y protección de datos en entornos Big data – por ej. AWS Data Lake y TERADATA.
• Experiencia con conceptos, políticas y estándares de privacidad de datos. (GRDP, PCI, SOX, Habeas Data, etc.)
• Experiencia en tareas de ingeniería de ciberseguridad, arquitecturas de seguridad de la información y sus componentes.
• Experiencia en metodologías ágiles de desarrollo.
• Experiencia en procesos de: manejo de incidentes, control de cambios y gestión de la configuración.

¿Qué vas a encontrar acá?

• Modelo #Xmart: nuestro esquema de trabajo flexible.
• Vacaciones por días hábiles.
• Prisma Traveller: 30 días al año para convertir cualquier lugar del mundo en tu oficina.
• Ajustes salariales por inflación, reintegro de gastos de internet y bono anual por performance.
• Crédito mensual en PedidosYa.
• Formación permanente, acceso a certificaciones, becas y descuentos en universidades y posgrados.
• Licencias extendidas de familia.

En Prisma creemos en el valor de la diversidad
Por eso, nos comprometemos a promover un entorno de trabajo inclusivo, que potencie la singularidad que cada persona aporta. Nuestras oficinas son accesibles y contemplamos apoyos o ajustes en el puesto de trabajo para personas con discapacidad. En nuestro equipo hay un lugar para vos, sumate

Job Summary

The Senior Cyber Security Engineer will oversee The Credit Pros' entire security framework. This includes securing cloud infrastructure (Azure and AWS), protecting key applications, managing access control, and ensuring device and network security. Responsibilities include leading initiatives like identity management, disaster recovery planning, and incident response. The role ensures end-to-end security, compliance with industry standards, and the safeguarding of sensitive data across the organization’s IT landscape.

Requirements

Responsibilities

• Comprehensive Security Management: Oversee security for all infrastructure, including cloud environments (Azure and AWS) and core applications, ensuring robust protection.
• Infrastructure Security: Configure and maintain secure settings for cloud services, networks, and applications to safeguard critical data and assets.
• Access Control & Identity Management: Manage identity and access policies to ensure proper access controls for users, systems, and devices.
• Application Security: Protect key business applications by identifying vulnerabilities, conducting assessments, and addressing security gaps.
• Device and Endpoint Security: Oversee the security of employee devices, enforce BYOD policies, and implement endpoint security measures.
• Network Security: Design and maintain secure network structures, including VPNs, firewalls, and monitoring tools.
• Disaster Recovery & Incident Response: Develop and lead the implementation of disaster recovery and incident response strategies to manage security events effectively.
• Penetration Testing and Vulnerability Management: Conduct regular testing and assessments to identify and mitigate threats proactively.
• Ransomware and Phishing Defense: Implement strategies for ransomware prevention and phishing awareness through simulations and education.
• Regulatory Compliance: Ensure adherence to industry standards, with a focus on PCI DSS compliance and related frameworks.

Qualifications

• 3+ years of experience in cybersecurity roles, focusing on cloud and network security and incident response.
• Strong expertise in Azure and AWS security configurations.
• Proven experience managing VPNs , firewalls , and endpoint security tools.
• Background in penetration testing , vulnerability assessments , and disaster recovery planning.
• Knowledge of PCI DSS compliance is a plus.
• At least one relevant certification (e.g., CISSP, CEH, CompTIA Security+, CCSP).
• Hands-on experience with ransomware prevention and phishing simulations .

Benefits

What’s in it for you?

• Work for a remote-first, digitally automated credit repair company dedicated to helping Americans achieve financial success.
• Competitive base salary: $20–$30/hour .
• Permanent full-time position offering 40+ hours per week.
• Salary plus flexible accruing paid time off , company holidays, birthday leave, and more.
• Health, dental, and vision insurance.

About The Opportunity

Netrix Global is looking for a AWSCloud Security Engineerfor the Professional Services – Cloud Engineering department.

We are looking for a people with experienced AWS Cloud ScurityEngineer to join our technology team. The ideal candidate will be responsible for designing, implementing, and managing security solutions on AWS, protecting our infrastructure and data against threats and vulnerabilities. You will work closely with other technical teams to ensure that our security practices and architectures meet the highest standards.

• Design, implement, and manage AWS cloud security solutions

• Develop and maintain security policies, procedures, and controls to protect the company's assets

• Monitor and respond to security incidents, investigating and mitigating threats and vulnerabilities

• Configure and manage AWS security services such as AWS Identity and Access Management (IAM), AWS Key Management Service (KMS), AWS Security Hub, AWS GuardDuty, and AWS CloudTrail

• Conduct risk assessments and security audits to identify and mitigate potential vulnerabilities

• Collaborate with development and operations teams to integrate security best practices into the software development lifecycle (SDLC)

• Stay updated on cloud security trends and AWS advancements, continuously proposing improvements to our security practices

• Bachelor’s degree in Computer Science, Systems Engineering, Information Security, or a related field

• Proven experience as an AWS Cloud Security Engineer or in a similar role

• Deep understanding of AWS services and hands-on experience in their configuration and management

• Familiarity with security standards and frameworks such as CIS, NIST, ISO/IEC 27001

• Experience in implementing and managing monitoring and incident response tools

• Strong knowledge of cryptography, identity and access management, and secure network architectures

• Scripting and automation skills (Python, Bash, etc.)

• Relevant AWS certifications such as AWS Certified Security - Specialty are highly valued

• Excellent communication skills and ability to work collaboratively in a team environment

• Advanced English

Location

• Buenos Aires, Argentina (Any part of the country is great for us!)

Shift

• 9 a.m to 6 p.m from Monday to Friday

• Swiss Medical: SMG-30 (family members included).
• AWS certifications.
• 99% discount in MercadoPago payments.
• Internet and connectivity.
• Competitive salary and benefits.
• English in company.
• Ability to work remotely.
• An awesome learning environment for you to develop.

At Netrix Global our values are the philosophies and principles that live by. They support our vision, help us achieve our goals and commit us to a common purpose.

We Own Outcomes, Win Together, Make An Impact, Enjoy The Journey, and Respect All!

Netrix Global is a mission-driven organization with the goal of providing the people, processes, and technology needed to run and scale modern, data-driven businesses that are always on and always secure. Our breadth of capabilities allows us to provide holistic offerings that solve even today’s most complex business challenges, delivering to you an integrated, optimized, and future-proof solution.

We work with clients of all sizes and specialize in solutions for healthcare, manufacturing, government, education, financial services, and legal industries. Netrix is consistently ranked in the CRN VAR500, detailing the country’s top system integrators.

At Netrix, we’re driven to solve business problems with innovative technology solutions. We focus on end-users and are committed to client satisfaction.

What You Can ExpectFrom Us

We offer a competitive compensation package, comprehensive group benefits to meet the needs of you and your family, flexibility, and time off when you need it, and a casual work environment.The role can be remote/home office, with some travel required.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, disability, veteran status, or any other protected characteristic. Our hiring, promotion and compensation processes are based on merit, skills, and qualifications, to ensure a fair and unbiased approach for our candidates and employees.As part of this commitment, we will ensure that persons with disabilities are provided reasonable accommodations.

If you need a reasonable accommodation, please let us know by contacting

To create a healthcare system with effective health information exchange, healthcare organizations need more than a series of connections between each other. They need assurance that the data being exchanged is meaningful and to know it will be delivered when and where they need it.

Founded in 2014, Health Gorilla provides access to actionable patient data, supporting a diverse set of clinical use cases and improving outcomes across the country. We work with some of the leading companies in health IT, value-based care, and digital health, including Virta Health, The Garage, Medhost, and many others. Health Gorilla is one of the five original organizations approved as a Qualified Health Information Network (QHIN) and the only QHIN to also be designated as a Qualified Health Information Organization (QHIO).

As a Senior Security Engineer at Health Gorilla, you will help secure platforms that power nationwide health data exchange, protect patient privacy, and ensure compliance in a cloud-native, high-scale environment. You’ll implement information security strategies and procedures, executing solutions that align with our architectural designs, industry best practices, and regulatory requirements such as HIPAA and TEFCA. As risks evolve, youu2019ll play a key role in proactively recommending modifications and enhancements to strengthen our security posture and identify opportunities for continuous improvement.

• Work with our engineering teams to define/refine information security systems management policies and settings.
• Conduct vendor and 3rd party information security audits and help with security questionnaires.
• Perform security analysis and risk assessments to identify threats and vulnerabilities, and work with engineering teams to document and remediate issues to safeguard information assets.
• Create AWS Cloud Formation templates, Ansible scripts and automation with AWS Systems Manager.
• Hands-on expertise with AWS-native security services including GuardDuty, Security Hub, Macie, Inspector, IAM, KMS, CloudTrail, and Config to design, monitor, and enforce security controls in a healthcare cloud environment.
• Experience implementing identity and access management best practices in AWS (least privilege, service control policies, cross-account roles, and MFA enforcement) to ensure HIPAA compliance.
• Proven ability to architect and operationalize security guardrails via AWS Config rules, SCPs, and automation (e.g., Lambda functions, EventBridge) for continuous compliance.
• Demonstrated skill in monitoring and incident detection using GuardDuty findings, CloudWatch alerts, and CloudTrail logs , integrating with SIEM/SOAR platforms.
• Proficiency in deploying, tuning, and managing CrowdStrike Falcon EDR for endpoint visibility, prevention, and real-time response across cloud and enterprise environments.
• Experience with threat hunting and investigation using CrowdStrike telemetry, Falcon OverWatch, and custom queries to detect advanced threats.
• Knowledge of malware analysis and incident response leveraging CrowdStrike’s real-time response capabilities, forensic data, and threat intelligence.
• Partner with other Cybersecurity, Engineering, and Product teams to align detection strategies with organizational objectives.
• Ensure all detection processes and tools adhere to regulatory requirements and industry standards (e.g., HIPAA, GDPR, PCI-DSS, NIST).
• Central point of contact for 3rd party audits (SOC2, ISO, HIPAA, HITRUST), and other GRC functions

• Expert level experience with Linux operating system and AWS ecosystems.
• Experience operating in highly regulated environments (e.g., HIPAA, HITRUST, SOC 2), with a strong understanding of compliance-driven security controls and documentation requirements.
• 7+ years conducting security work in enterprise infrastructure or cloud environments (AWS experience a plus)
• 3+ years working with any of the following: intrusion detection systems, remote access VPN technologies, vulnerability assessment tools, event and log analysis solutions and configuration and change management systems.
• Possess knowledge of SIEM implementation and log ingestion, SOAR, Incident Response, and Threat Intelligence that will be data-driven with strong verbal, written communication, and leadership skills.
• Strong experience with Information Security, Network Security, Security Monitoring, Incident Response, Auditing
• RFP/RFI Response Knowledge (ability to work and support proposal efforts).
• Certifications in information technology security such as AWS Security, AWS Associate Level certification, CISSP or CCSP.
• Bachelor's degree in Computer Science or equivalent work experience

• Health Gorilla takes a market-based approach to pay, and the base salary range for this role is $159,000 to $180,000, based on experience. Please note that ranges may be modified at any time, and there is no guarantee offers will be at the top of a posted range.
• 401(k) plan with discretionary annual matching
• Medical, dental, and vision insurance
• Short-, long-term disability, life insurance, and mental health & wellness support
• Paid parental leave (up to 12 weeks)
• Monthly stipend for phone and internet
• Stipend for home office equipment (we provide the laptop)

Health Gorilla is an equal opportunity employer. Applicants will not be discriminated against because of race, color, creed, sex, sexual orientation, gender identity or expression, age, religion, national origin, citizenship status, disability, ancestry, marital status, veteran status, medical condition, genetic information, or any protected category prohibited by local, state or federal laws.

Qu's mission is to deliver world class enterprise software to help restaurant chains thrive in the face of increasing complexity, opportunities, and challenges.

Based in Rosslyn, VA, Qu is backed by leading Silicon Valley investors that have also backed Google, Uber, and Dropbox.

We are building an Agile Security Operations team where you'll own the design and implementation of our threat detection and monitoring capabilities. This role offers an exciting opportunity for a security engineer who wants to take ownership of building comprehensive detection capabilities from the ground up, bridging the gap between security theory and operational reality.

What You'll Own

AWS Security Architecture

• Design and implement security controls across our AWS environment including ECS/ECS-Anywhere workloads
• Own the configuration and optimization of AWS security services (GuardDuty, Security Hub, Config, CloudTrail)
• Build and maintain secure network architecture with VPCs, security groups, and WAF configurations
• Take ownership of encryption strategies using AWS KMS and secrets management

Threat Detection & Response

• Develop custom GuardDuty detectors and behavioral analysis for our specific AWS/ECS environment
• Build automated threat response workflows and incident response runbooks
• Create threat hunting capabilities specific to cloud workloads and container environments
• Integrate AWS security telemetry with our SIEM platform for comprehensive visibility

Container & Serverless Security

• Secure our ECS and ECS-Anywhere container deployments with runtime protection and monitoring
• Implement container image scanning and vulnerability management workflows
• Design security frameworks for Lambda functions and serverless architecture
• Build security automation for container lifecycle management

Compliance & Governance

• Ensure AWS environment meets SOC 2, PCI, and ISO compliance requirements
• Implement automated compliance monitoring and drift detection
• Design and maintain security baselines and configuration standards
• Create compliance reporting and evidence collection automation

What You Bring

Required AWS Expertise

• AWS Certification Required: Valid AWS Security Specialty, Solutions Architect Professional, or equivalent certification
• Expired certifications acceptable with commitment to renew within first 4 months of employment
• Certification verification required during interview process
• 3+ years of hands-on AWS security experience with demonstrated expertise in security services
• Deep knowledge of AWS IAM, VPC security, encryption services (KMS), and compliance tools
• Experience securing containerized applications and serverless workloads in AWS

Technical Leadership

• Proven track record of designing and implementing AWS security architecture from scratch
• Experience with Infrastructure as Code (CloudFormation, Terraform) for security automation
• Strong knowledge of container security (ECS, Docker) and runtime protection
• Proficiency in scripting (Python, PowerShell) for security automation and response

Ownership & Innovation

• Experience building security controls that scale with rapid business growth
• Strong problem-solving mindset with bias for action and continuous improvement
• Ability to work independently while collaborating effectively with DevOps and engineering teams
• Customer-focused approach to internal stakeholders and compliance requirements

Why Join Qu?

• AWS Expertise Valued: Your AWS certification and cloud security expertise will be central to our success
• Architecture Ownership: Design and build cloud security architecture that supports millions of restaurant transactions
• Innovation Platform: Work with cutting-edge AWS services and emerging cloud security technologies
• Growth Opportunity: Build security capabilities that scale from startup to enterprise as Qu grows
• Industry Impact: Protect critical restaurant operations while enabling digital transformation

Ready to own AWS security at Qu and help restaurants thrive securely in the cloud? Let's talk

A career in Information Security will provide you with the opportunity to develop and support our internal security technologies and services across the global PwC network. You will focus on being the forefront of designing, developing, and implementing information technology including hardware, software, and networks that enhance security of our data, network and protect our firm's intellectual assets.

What we're looking for:

Working understanding of the following areas: IP Networking Protocols, VPN, Firewalls and DNS

Experience working with one or more Cloud Service Provider - Azure or AWS preferred.

Proven skills utilising Python and Bash

Working knowledge of PaloAlto Next Generation Firewalls

Ability to work with and interact with various API content

Experience working with Automation & Orchestration tools such as ADO Pipelines, Ansible, Git and/or Terraform

Working understanding of the following areas
:

• IP Networking Protocols, VPN, Firewalls and DNS
• Experience working with one or more Cloud Service Provider - Azure, AWS (preferred).
• Ability to work with and interact with various API content
• Proven skills utilising Python and Bash
• Experience working with Automation & Orchestration tools such as ADO Pipelines, Ansible, Git and/or Terraform
• Working knowledge of PaloAlto Next Generation Firewalls
• Self-motivated; being able to work independently to identify opportunities for improvement
• Quick Learner; proven ability to upskill quickly to deliver impactful results

At
Randstad Digital
, we are looking for an
Cyber Security Engineer
- Advanced English
to join a leading global company specializing in Audit, Consulting, and Technology solutions.

Employment Type:
Permanent

Work Model:
Full-time,
100% remote.

Employment Type:
Full-time

Key Responsibilities

• Security Engineering:
  Actively participate in all phases of security engineering, from conceptual design to the implementation, deployment, and continuous improvement of solutions.
• Security Project Management:
  Lead and guide security projects, ensuring the integration of best practices and security standards at every stage.
• Stakeholder Interaction:
  Collaborate with business and technology stakeholders across all levels and global territories, interpreting their needs and translating them into technical security solutions.
• Global Solution Design:
  Design and build security technology solutions that align with a centralized, global service environment.
• Technology Implementation:
  Apply and configure enterprise-level and solution-level security technologies to meet control requirements and security policies.
• Controls Optimization:
  Map long term business requirements and security standards to functional implementations, ensuring the effectiveness of security controls.
• Technical Documentation:
  Write, review, and refine clear and precise technical documentation for all implemented solutions and processes.

Mandatory Requirements

• Experience:
  Minimum of
  4 years
  of progressive experience in security engineering, information security, or IT roles.
• Technical Skills:
• Deep knowledge and hands-on experience in
  DLP (Data Loss Prevention), EDR (Endpoint Detection and Response), and PAM (Privileged Access Management)
  .
• Solid experience with
  cloud workloads (AWS, Azure, etc.) and containers (Docker, Kubernetes)
  .
• Proficiency with multiple operating system platforms (Mac, Windows, Linux) and endpoint types (Laptops, Servers, Mobile Devices).
• Experience with cloud workload types such as serverless functions and SaaS resources.

Certifications:
Cybersecurity certifications are required (
CISSP
or cloud related certifications are highly valued).

Benefits:

-Annual performance bonus.

-Health plan for the candidate and their family.

-Discounts at top tier gyms.

-Birthday day off.

-Exclusive discounts at universities and educational institutions.

-Flexible Fridays and end-of-year holiday weeks

If you meet the requirements and are ready to take on this challenge, we encourage you to
apply

Overview:

We are seeking an experienced Application Security Engineer to serve as a trusted partner to our software development teams. This role focuses on making our product secure by design—embedding security into how software is architected, written, deployed, and maintained. Unlike infrastructure security roles, this position centers on application-layer and code-level security, working closely with developers to enable fast, confident delivery by providing meaningful, actionable security tooling and feedback. This includes leveraging modern AI-assisted techniques to accelerate vulnerability analysis, exploit chaining, and demonstration of actual risk. You will ensure engineering teams move faster—not slower—while minimizing noise. This role is part of the IT & Security team and prioritizes embedding guardrails into developer workflows rather than enforcement gates.

About Nerdy:

At Nerdy (NYSE: NRDY) - the company behind Varsity Tutors - we're redrawing the blueprint of learning. Our Live + AI platform fuses real-time human expertise with proprietary generative-AI systems, setting a new bar for measurable academic impact at global scale. We recruit the kind of technologists and operators you'd bet on as solo founders - people who turn ambiguous problems into shipping code, iterate faster than markets move, and compound their advantage with every data point. In an era where great employees can deliver 10-times the leverage of the merely good, we back those who play to win.

Fortune favors the bold. Join us.

How we compete:

• AI-Native at every level
  
  From the CEO to day-one hires, everyone builds and ships with generative AI. If you're not wielding AI, you're not done.
• Entrepreneurial velocity
  
  Move at founder speed, prototype in hours, and measure in real user outcomes. Slow teams die.
• Free-market rigor
  
  Ideas rise or fall on merit and results - no committees, no politics, no cap on upside.
• Full-stack ownership
  
  You design, build, and run what you ship; accountability is a feature, not a bug.
• Reward for contribution
  
  Pay rises with impact, not years. Outstanding results earn outsized rewards. We evaluate both what you achieve and how you achieve it: living our leadership principles and using AI effectively are formally measured and rewarded.
• Relentless exploration
  
  Push the frontier of generative AI in live learning and - because only the paranoid survive - questioning every legacy assumption along the way.
• Is Apolitical
  
  You stay focused on mission-aligned outcomes, not distractions or unrelated causes.

If you're a technically minded builder who thrives on open competition, personal responsibility, and the chance to redefine how the world learns - while continually stretching the limits of what generative AI can do - come do the most ambitious and rewarding work of your career here. Learn more at

Nerdy's shareholder letters below explain our latest products and strategy:

• Q2-2025 Shareholder Letter
• Q1-2025 Shareholder Letter
• Q4-2024 Shareholder Letter

Qualifications:

Required:

• Experience as an Application Security Engineer, Security Consultant, or Security-focused Software Engineer.
• Strong understanding of secure coding practices and common vulnerability patterns.
• Ability to apply common web application attack techniques and create proof-of-concept exploits to validate whether vulnerabilities are exploitable in our environment.
• Proven ability to analyze exploit chains and demonstrate actual risk, leveraging AI to accelerate discovery and validation.
• Hands-on experience integrating security tooling into CI/CD pipelines.
• Familiarity with Ruby, Go, JavaScript/React, and related frameworks.
  Deep familiarity with OWASP guidance, including the OWASP Top 10, Application Security Verification Standard (ASVS), and Secure Coding Guidelines.
• Partner with DevOps to embed application security into CI/CD pipeline design and practices.
• Ability to assess and communicate application risk in architectural and business context.
• Comfortable demonstrating real-world exploits to technical and non-technical stakeholders.
• Excellent written and verbal communication skills in an async-first, remote environment.

Preferred:

• Experience leveraging and adapting open-source tools and frameworks for application security testing and validation.
• Experience with API security testing and continuous monitoring, leveraging AI for fuzzing, intelligent input generation, and automated discovery.
• Experience building or maintaining secure development training programs.
• Security certifications (OSWE, OSCP, GIAC) are a plus but not required.

Responsibilities:

• Enable engineering teams to move quickly while embedding security into development workflows—security and speed go hand-in-hand.
• Partner with engineering on secure use of AI services, evaluating controls such as AI gateways, prompt inspection, and policy enforcement.
• Identify, prioritize, and implement security tooling in developer environments and CI/CD pipelines, with AI-assisted triage to reduce noise and highlight exploitable risks.
• Collaborate with developers to identify vulnerabilities in code, APIs, and dependencies; improve secure coding awareness; and participate in design reviews and threat modeling.
• Demonstrate practical exploit techniques to raise security awareness and drive remediation, including chaining multiple weaknesses across services to illustrate end-to-end risk.
• Analyze vulnerabilities across code, dependencies, APIs, and logic, with AI-assisted techniques to identify and prioritize exploit chains.
• Build or adapt automation scripts and tools for continuous security validation, , using AI copilots to accelerate script generation and validation.
• Provide coaching, documentation, and embedded training to help developers understand and apply security guidance within their workflows.
• Continuously evaluate emerging AI and application security threats and detection techniques.
• Lead incident response activities as part of the incident commander rotation.
• Drive continuous improvement of incident response runbooks and playbooks.

Unlock Your Full Potential at Nerdy:

Join our worldwide team—work from home, get great pay, and help shape the future of learning. Here's what you get:

• Competitive USD Compensation: Enjoy a market-leading rate paid in U.S. dollars.
• 100% Remote (Home Country Only): Work from anywhere in your home country—no relocation required, no borders crossed.
• Flexible Time Off: Our flexible PTO lets you recharge on your own terms and when you need it the most.
• Local Holiday Pay: We honor your nation's official holidays with paid time off—celebrate what matters to you.
• Continuous Learning: Get a free, all-inclusive learning membership for you and your household—including 1-on-1 tutoring hours, unlimited on-demand classes, and access to our full suite of learning products and services.
• Supercharge with AI: Gain exclusive access to cutting-edge AI tools that boost your productivity, making you feel almost super-human (cape not included).
• Feedback-Rich, Collaborative Culture: Tap into regular training, peer reviews, and a team that treats every team member as a vital collaborator and owner in our success.
• Make a Global Impact: Your expertise fuels an innovative platform used by learners around the world—be part of something transformative.

The Bottom Line:

If you're driven by impact, energized by ownership, and excited to help shape what's next, you'll thrive here. We move fast, think big, and reward those who deliver. This isn't a traditional corporate environment - it's a place to do the most meaningful work of your career.

Nuestro equipo de Application Security

El equipo de Application Security tiene como misión integrar la seguridad en todo el ecosistema de Tiendanube, anticipándose a las amenazas y ayudando a que nuestros productos sean seguros por diseño. El área de Red Teaming es clave para simular atacantes reales, identificar vulnerabilidades críticas y construir capacidades que fortalezcan tanto la defensa como la prevención de incidentes. Con un enfoque purple team, trabajamos estrechamente con equipos de desarrollo, infraestructura y defensa, pero siempre con una fuerte orientación ofensiva.

El tamaño de tu desafío

• Simular ataques avanzados en aplicaciones, infraestructura y entornos cloud, con un enfoque red team.
• Automatizar y desarrollar herramientas internas que permitan prevenir ataques, generando impacto directo en la seguridad de la empresa.
• Realizar code reviews con foco en seguridad y colaborar con los equipos de desarrollo en la remediación de vulnerabilidades.
• Contribuir a la creación de foundations de Application Security, construyendo procesos, controles y cultura que fortalezcan a toda la organización.

Lo que buscamos

• Experiencia en seguridad ofensiva, Red Teaming o pentesting.
• Conocimientos sólidos en programación y scripting (Python, Go, JavaScript u otro lenguaje relevante).
• Capacidad para automatizar escenarios ofensivos y crear herramientas internas de seguridad.
• Habilidad para realizar code reviews y detectar vulnerabilidades en aplicaciones modernas.
• Comprensión de técnicas ofensivas: explotación de vulnerabilidades, escalamiento de privilegios, evasión de defensas, movimiento lateral.
• Comunicación clara y efectiva para explicar findings a equipos técnicos y no técnicos.

Es un plus

• Experiencia en cloud (AWS preferentemente) y seguridad en entornos distribuidos.
• Experiencia en automatización de pruebas de seguridad en pipelines CI/CD.
• Conocimientos de detección y evasión en sistemas Linux y Docker/Kubernetes.
• Experiencia en el manejo de reglas de WAF.
• Experiencia previa colaborando en entornos purple team.

Nuestro proceso

Queremos que tengas la mejor experiencia posible a lo largo de nuestro proceso de selección. Después de que te postules, el equipo de Talent Acquisition va a analizar tu perfil con atención e, independientemente del resultado, vas a recibir una respuesta.

Las etapas y los plazos pueden variar según cada vacante, pero no te preocupes — vamos a mantenernos en contacto con vos durante todo el proceso.

Lo que te proponemos

• Cobertura de salud OSDE 310 para el grupo familiar (cónyuge + hijos);
• Clases de portugués 100% cubiertas;
• Reintegro del servicio de Internet;
• Descuentos en cursos de Coderhouse;
• La asistencia de guardería es un beneficio que tiene como objetivo apoyar a los colaboradores en la provisión de un entorno seguro para sus hijos desde los 45 días de vida, hasta los 3 años de edad, durante tu jornada laboral;
• Licencia familiar extendida a 21 días corridos para personas no gestantes o adoptantes;
• 15 días hábiles de vacaciones a lo largo del año;
• Además de las vacaciones, disponemos de una semana de descanso para recargar energías entre final/principio de nuevo año;
• Una Tiendanube gratuita para vos o alguien de tu entorno;
• Somos #remotefirst, priorizamos el trabajo remoto dentro del país de contratación, siempre que el rol lo permita;
• Es un entorno de desafío constante, propósito y protagonismo — acá la innovación nace de pensar en grande y tener actitud gigante.

Política de Privacidad

Tiendanube se compromete a proteger la privacidad y garantizar la seguridad de las personas indicadas para las vacantes que ofrecemos.

Para analizar tu solicitud, tendremos acceso a parte de tu información que será revisada antes de continuar. Utilizaremos estos datos para realizar los procesos de reclutamiento y selección. Además, cuidamos muy en serio a nuestras personas y solo compartimos información realmente necesaria. En última instancia, solo los mantendremos en nuestro sistema durante el tiempo que realmente lo necesitemos.

Para obtener más información sobre cómo manejamos los datos, incluidos tus derechos según la ley, simplemente accedé a nuestra Política de Privacidad.