Senior SecOps Engineer

About Tala   Tala is AI-native credit infrastructure for the global majority, combining proprietary risk intelligence with an expanding network of capital and distribution partners to power credit access at scale. Backed by more than $500 million in funding, Tala has distributed more than $7 billion in capital to more than 13 million customers across Africa, Latin America, and Asia—building one of the most robust datasets on thin-file borrowers anywhere in the world. Our mission is simple yet bold: to unleash the economic power of the global majority. We are looking for daring, data-driven leaders passionate about building the trust and credit infrastructure for the global majority.   Our pioneering work and proven impact have earned us consistent recognition, including being named to: CNBC’s Disruptor 50 for five years. CNBC’s World's Top Fintech Companies for two consecutive years. Forbes’ Fintech 50 list for nine consecutive years. Visionary investors, persuaded by the economic power of the global majority, have committed half a billion dollars in equity and debt to Tala's success.   Given the global nature of our team, we operate on a remote-first approach with office hubs in Santa Monica, CA (HQ); Nairobi, Kenya; Mexico City, Mexico; Manila, the Philippines; and Bangalore, India.   Most Talazens join us because they connect with our mission. If you are energized by the impact you can make at Tala, we’d love to hear from you!

The Role 

We are currently seeking a Sr SecOps Engineer to design, implement and maintain suitable infrastructure and application security solutions on AWS public cloud environments using DevSecOps mindset. You will bring world class cloud-native security expertise to implement solutions for security configuration hardening, vulnerability management, detection, protection and monitoring of security threats and intrusions, in an automated fashion. 

What You'll Do

Driving the design and implementation of defense-in-depth infrastructure and application security solutions for our customer facing SaaS platform in AWS public cloud environments

Driving architecture, implementation, configuration and automation of native and third party cloud security solutions for hardening, detection, prevention, logging and response solutions for security vulnerabilities and threats

Provide thought leadership with a security bent of mind to the organization

Working closely with Product, Engineering and IT in a DevSecOps model on technologies like FWs, ACLs, WAFs, IAM roles and permissions, Vulnerability management and hardening, Threat and Intrusion detection, Kubernetes Container Security solutions, Pen Test and endpoint security

Assisting in incident response and triaging activities as needed for security incidents and events

Using AI in security operations to streamline and optimize the security incident management, resolution.

What You'll Need

5-7 years of previous experience deploying and administering security infrastructure in AWS public cloud environments, using Infrastructure as Code required

In-depth hands-on experience with at least one public Cloud platform (AWS or GCP) with advanced knowledge of securing IaaS platforms and services like WAFs, Security Groups, EC2/Compute, EKS/GKE, ECR/GCR, S3/Cloud Storage, RDS/Cloud SQL, Logging and Monitoring

Prior experience working closely with Product, DevOps and CloudOps' Site Reliability Engineers on shift-left strategies, CI/CD tools and solutions needed

Experience working on DLP and endpoint security product is a big plus

Security experience in a cloud native environment in one or more areas: authentication, access management, API security, Linux security, vulnerability scanning, threat and intrusion detection, firewalls, WAF, encryption technologies, container security etc.

Experience using a programming language such as Python for automation (would be a plus)

Security certifications from AWS, GCP , CISSP, CEH, OSCP preferred

Our vision is to build a new financial ecosystem where everyone can participate on equal footing and access the tools they need to be financially healthy. We strongly believe that inclusion fosters innovation and we’re proud to have a diverse global team that represents a multitude of backgrounds, cultures, and experience. We hire talented people regardless of race, religion, color, national origin, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status.