Why should you join dLocal?
Envíe su solicitud a continuación después de leer todos los detalles y la información de apoyo sobre esta oportunidad de trabajo.
dLocal enables the biggest companies in the world to collect payments in 40 countries in emerging markets. Global brands rely on us to increase conversion rates and simplify payment expansion effortlessly. As both a payments processor and a merchant of record where we operate, we make it possible for our merchants to make inroads into the world’s fastest‑growing, emerging markets.
By joining us you will be a part of an amazing global team that makes it all happen. We work with 1000+ teammates from 30+ different nationalities and develop an international career that impacts millions of people’s daily lives. We are builders, never run from a challenge, are customer‑centric, and if this sounds like you, we know you will thrive in our team.
About Us & The Role
dLocal processes billions in payments across 40 emerging markets. The infrastructure behind that runs fast, runs globally, and runs on engineering teams that do not have patience for security that slows things down. Neither do we.
Our security function is lean by design and automation‑native by philosophy. We have built a modern stack, a senior team, and a culture where security engineers are expected to think like builders, not gatekeepers. The CISO's mandate is simple: safely accelerate the business. Everything we build is oriented around that.
This role is the technical backbone of our defensive infrastructure layer. You will own the detection, defensive security platforms and cloud security engineering that every other security team depends on. You will work across a wide ecosystem: Cyber Detection & Response, Cloud & Platform Security, Application Security, Offensive Security, IAM, and our Security Automation & AI team internally, and Cloud Platforms, SRE, DevOps, Network, and CI/CD teams on the engineering side.
That cross‑functional surface area is intentional. This is not a role where you sit inside a tool and tune rules. You will be the person who connects posture signals to response workflows, translates every security requirement into engineering backlogs and builds the infrastructure that makes the rest of the security organization measurably faster.
If your instinct when you see a manual process is to automate it before the week is out and you get genuinely energized by owning hard infrastructure problems end to end, this is built for you.
Key Responsibilities
Defensive Infrastructure & Platform Engineering
Strategic Architecture: Partner with CDR to architect, deploy, maintain SIEM, EDR, DLP, CASB, ensuring high‑fidelity signal for defense.
Log Lifecycle: Identify, onboard, validate log sources across production and enterprise. Own full log lifecycle from ingestion to actionable alerting.
Policy Tuning: Configure agent policies and manage underlying infrastructure (patching, scaling). Make final call on security‑vs‑productivity trade‑offs.
Cloud Platform Engineering
Hardened Foundations: Design secure‑by‑default AWS architectures, golden AMIs, EKS base images for engineering teams.
Security‑as‑Code: Drive guardrails through Terraform modules, admission controllers, automated drift detection, turning CPS policy requirements into engineering reality.
Proactive Design: Lead threat modeling with SRE and Product teams, translate findings into prioritized engineering backlogs.
Automation & AI Integration
Intelligent Workflows: Collaborate with internal AI & Automation team to feed platform signals into automated, AI‑assisted response pipelines.
Orchestration: Design and optimize SOAR workflows to reduce manual toil. Automate repeatable processes to scale security without adding headcount.
Compliance Engineering: Own technical security controls and evidence collection for PCI DSS, SOX, SOC‑2;
automate controls and evidence for seamless audits.
Incident Response & Strategic Advisory
Advisory: Act as advisor during complex security events across cloud, production, and enterprise environments.
Feedback Loops: Ensure every incident investigated by CDR feeds back into detection logic and automation workflows, hardening the environment for future incidents.
What You Bring
6+ years of hands‑on experience across Security Operations, Detection Engineering, and Cloud Security;
strong record of building and owning infrastructure.
Platform depth: SIEM, EDR, DLP, CSPM, CNAPP proficiency at configuration and architecture level.
Advanced AWS security architecture: IAM, SCPs, GuardDuty, and beyond;
production EKS hardening;
Kubernetes security from first principles.
Automation and IaC proficiency: expert‑level Terraform and Python (or Go) to build integrations and automate workflows.
Adversary‑centric detection mindset: MITRE ATT&CK as a working tool to build meaningful detections.
Compliance ownership: direct experience with PCI DSS, SOX, SOC‑2;
able to make compliancenon‑burdensome for engineering.
Cross‑functional abilities: run threat modeling with product teams, hand off backlog to DevOps, work smoothly with OffSec – skilled stakeholder communication.
Grit: high autonomy, accountability, comfortable with ambiguity, willing to do manual work when necessary.
Nice to Have
Solid knowledge across multiple security domains (CDR, Cloud Security, AppSec, OffSec, etc.)
Experience with Security Platforms, AI agents, LLM APIs, and automation frameworks.
Familiarity with threat intelligence platforms and integration into detection pipelines.
MDR vendor co‑management experience.
Prior involvement in purple‑team or red‑team exercises.
Certifications (GCIA, GCFA, OSCP, AWS Security Specialty) valued but secondary.
How You'll Work
High ownership. No queue to wait in.
You will interface daily across Cyber Detection & Response, Cloud & Platform Security, AppSec, IAM, Offensive Security, and the Security Automation & AI team. On the engineering side, you will work regularly with Cloud Platforms, SRE, DevOps, Network, and CI/CD teams. The surface area is wide and the problems are real.
The CISO's office operates on one principle: security is a business enabler. You will have executive sponsorship and the political cover to make pragmatic trade‑offs. There is no option to move slowly or hide behind process.
If you want to own infrastructure that actually matters, work with a team that respects engineering craft, and build in an environment that moves at the speed of the business, this is the right place.
What We Offer
Flexibility: flexible schedules;
performance‑driven culture.
FinTech industry: work in dynamic, evolving environment;
opportunities to boost creativity.
Referral bonus program.
Social budget: monthly budget to spend with your team (in person or remotely).
Housing support: assistance renting a house to cowork anywhere in the world for a week.
Flexibility in How You Work
We focus on impact and productivity over fixed hours. xhfqzwm Teams have flexible schedules and combine self‑managed focus time with moments of in‑person connection in our collaboration hubs, depending on role and location.
#J-18808-Ljbffr