Security Engineer

Stori Card

Stori Card

Software Engineering
Mexico City, Mexico
Posted 6+ months ago

About Stori

Stori is a fast-growing, venture-backed financial technology company, on a mission to democratize credit access for 400 million underbanked LatAm consumers. Stori currently operates in Mexico and has a global team with offices in Arlington Virginia, Mexico City, and Asia. We have quickly made our mark as one of the top digital banks in Mexico with more than two million applicants for our credit card product since launching.

Stori is one of the top-funded startups in the region with US$250 million raised to date. We are backed by top global venture capital funds, such as GGV Capital, GIC, Lightspeed Venture Partners, General Catalyst, Goodwater Capital, Mexico’s Tresalia Capital, Vision Plus Capital, BAI Capital and Source Code Capital; who have successfully invested in startups such as Affirm, Airbnb, Alibaba, Stripe, and TikTok.

Stori has a standout founder team among fintechs, leveraging 100+ years of accumulated experience in consumer finance, banking and technology across Mastercard, Intel, Capital One, Morgan Stanley, GE Capital, and HSBC in the U.S., Mexico and Asia. The team has launched and managed many multi-million-customer credit card products globally, providing a wide breadth of experience and knowledge to our team.

We welcome diversity of background, experience and thinking. Storians are passionate about our mission and take pride in the products we build. Our culture thrives off of a flat structure and an inclusive environment where all of our employees can be their authentic selves, with boundless opportunities for professional growth.

You will

  • Design and cybersecurity controls for cloud architecture (Cloud, endpoints, AWS)
  • Follow up on control development and implementation
  • Perform assessments on infrastructure and application controls to ensure compliance with security policy and security architecture requirements

Requirements

  • Bachelor’s Degree in Computer Science, Cyber Security, Software Engineering, Computer Engineering or a related field
  • 2+ years of experience in any of the following industries: Fintech, banking, payments, security, regulatory, compliance or a related industry
  • Certified in one or more of the following: AWS Solutions Architect, AWS Security Specialty, AWS Solutions Architect Professional, AWS SysOps Administrator, AWS DevOps Engineer Professional, AWS Developer
  • Experience in Cloud platforms, Cloud applications and architectures, Infrastructure as Code, DevSecOps and Serverless applications
  • Good understanding of Web/Mobile application and API security, their monitoring and protection, cryptography concepts, DAST and SAST and the software development lifecycle
  • Experience with Python or Go and shell scripting
  • Experience with cloud specific security controls (continuous patching, infrastructure as code, serverless operations, Identity Providers, Identity Federation, IaaS access management and security controls), and information security controls and standards (PCI, ISO 27001)
  • English proficiency

Strong preference

  • Organized
  • Critical thinking
  • Autodidact; able to learn quickly and deliver value
  • Great communication skills, Negotiator
  • Customer centered
  • General understanding of security and regulatory compliance
  • Design and user experience understanding
  • Empathetic

What we offer

  • Make a positive impact on the lives of our customers via financial inclusion
  • Professional development opportunities
  • International exposure & work experience
  • Company swag
  • Legally required benefits