Soma Capital Portfolio Jobs

Application Security Architect (LATAM)

Deel

Deel

IT
Santiago, Santiago Metropolitan Region, Chile
Posted on Tuesday, January 16, 2024

Who we are and what we do

Deel is a global team that helps businesses hire anyone, anywhere, easily. Deel consists of more than three thousand self-driven individuals spanning over 100 countries. Our unified yet diverse culture keeps us continually learning and innovating the Deel platform and our products for customers.

Companies should be able to hire the best talent anywhere in the world, so we are building the best platform to make that a reality. Our market-leading technology, expertise, and global team are crucial to the success of Deel’s platform. We deliver the best products and platform features in our space, enabling millions of jobs worldwide and connecting the global workforce with the best companies and opportunities.

Why should you be part of Deel's success story?

A 30-mile hiring radius should no longer dictate how companies hire because great talent lives everywhere. Deel sees a world without hiring borders and endless talent that pairs perfect candidates with great companies.

We offer global teams all the tools they need to hire, onboard, manage, pay, and scale at full speed. We aim to foster a diverse global economy by building a generational platform that seamlessly connects companies with talent worldwide.

After our successful Series D in 2021, we raised another $50M last year, doubling our valuation to $12B.

There’s never been a more exciting time to join Deel — the market leader in international payroll and compliance.

Job Description:

The Application Security Lead Architect will lead the efforts to secure Deel’s product by guiding and monitoring the different R&D teams to secure development, designing secure architecture of software products, conducting risk and threat analysis, threat modelling, code reviews, application penetration testing, and responding to specific developers’ and/or customers’ questions

Responsibilities:

  • Work to obtain the right mandate to ensure Deel’s products or services are launched with the appropriate security controls.

  • Continually monitor the security systems and prioritize the remediation for the product, R&D, and/or DevOps.

  • Provide security standards, requirements, and guidelines for securing the products.

  • Take a part in the development lifecycle and integration of security features into all phases of software design and development

  • Provide support for Pre-Sales activities and potential customers' security questionnaires.

  • Assist with reviewing architecture and design for new products, features, and services.

  • Identify and facilitate remediation of application and cloud security exposures and vulnerabilities, including code reviews, threat modeling, and penetration testing if needed.

  • Research new application security tools and technologies, and evaluate options that enhance security capabilities.

  • Work closely with R&D and Product to enhance application security on all layers.

  • Perform periodic application-level penetration tests on major features and versions.

  • Coordinate third-party penetration tests and security assessments as part of our global security program.

  • Working collaboratively with development teams on secure design and Threat modeling, performing training on Secure-SDLC and secure development.

  • Providing guidance and answering questions about security practices in regard to AppSec

Job Requirements:

  • 3+ years of experience in Application Security.

  • Experience with secure coding techniques.

  • Experience with the following programming languages: NodeJS, React, .net, PHP, and Python.

  • Experience in Cloud technologies, SaaS environments, and microservices architecture.

  • Deep understanding of cyber security frameworks, such as MITRE, OWASP, and others.

  • Stay up to date with the latest security technologies, and attack techniques.

  • Deep knowledge in web & application security.

  • Excellent English in both verbal and written.

  • 2+ years of experience in application risk assessments, penetration testing, code review, and SSDLC procedures.

  • Be proficient with Cloud technologies.

  • Have experience with threat modelling (STRIDE, RRA, etc.)

Advantages

  • CISSP, CISM, CCSP, and OSCP certifications.

  • knowledge in security solutions such as Web application firewalls, DB Firewalls, Vulnerability scanners, and RASP/DAST/SAST solutions

  • knowledge in CI tools/methodologies

  • Technical background as a developer.

  • Design and develop frameworks and solutions to secure CI/CD pipelines.

Total Rewards

Our workforce deserves fair and competitive pay that meets them where they are. With scalable benefits, rewards, and perks, our total rewards programs reflect our commitment to inclusivity and access for all.

At Deel, you’ll enjoy:

  • Computer equipment applicable to your role

  • Stock grant opportunities

  • Additional perks and benefits based upon your employment status and country

  • The ability to choose where you work whether it be your home, the beach, or a WeWork

At Deel, we're an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, or other applicable legally protected characteristics.

"Please note that we will only communicate with our job applicants by using @deel.com domains. We will never contact applicants from any other email address. We will never ask for money from potential employees. Be cautious of any unauthorized solicitations. You may view the most current and accurate job postings at Deel by visiting https://www.deel.com/careers.