Job Description

Rapyd has unified payments, payouts and fintech on one worldwide platform, and we’re assembling the world’s best team to liberate global commerce. With offices in Tel Aviv, Amsterdam, Singapore, Iceland, London, Dubai, Hong Kong, and the U.S., the opportunities at Rapyd are limitless.

We believe in straight talk, quick decisions, strong execution and elegant solutions. Rapyd is where hard work pays off and careers take off. Join us and let’s build the future of fintech together.

Get the tools to grow globally at www.rapyd.net. Follow: Blog, Insta, LinkedIn, Twitter

As an Offensive security expert to join our fast-growing Fintech team in Latin America. In this critical position, you will own the offensive security strategy on cloud platform, ensuring our financial platforms and customer data are resilient against sophisticated attacks. You will bridge the gap between Engineering and Security, embedding robust testing into our Infrastructure and development lifecycle and managing our vulnerability landscape to maintain trust and compliance in the financial sector.

Key Responsibilities

• Advanced Penetration Testing: Plan and execute comprehensive manual and automated penetration tests on our web applications and APIs using Web Pentesting tools, identifying critical logic flaws and security loopholes.
• Vulnerability Management Strategy: Orchestrate the end-to-end vulnerability lifecycle using security scanners and vulnerability analyzers. You will triage findings, prioritize remediation based on risk, and manage our external bug bounty programs.
• Application Security (AppSec): Integrate security seamlessly into our CI/CD pipelines (GitLab / Jenkins) by continuously implementing and overseeing SAST/DAST processes to ensure code is secure before deployment.
• Cloud Security Architecture: Monitor and harden our Cloud platform on AWS environment utilizing native AWS security tools, ensuring our infrastructure adheres to best practices and compliance standards.
• Remediation & Collaboration: Act as a technical advisor to engineering teams,providing clear guidance on fixing security flaws and fostering a “security fist” culture within the development lifecycle.

Requirements

• Background &Experience: 5+ years of experience in cybersecurity with a heavy focus on Penetration Testing, Application Security, or Cloud Security, preferably within the Fintech or banking sector as well as experience with previous PCI DSS audits.
• Technical Stack Expertise: Deep proficiency with Burp Suite for Pentesting, WIZ for cloud visibility, and experience configuring SAST/DAST tools. Strong hands-on knowledge of AWS services and security controls is essential.
• Linux proficiency is a must, of any Linux distribution as well as other testing tools like nmap, Nikto,OwaspZAP, Tenable, Postman, Fuzzing tools, SQLMap, Puppeteer and others related.
• DevOps Integration: Practical experience securing CI/CD pipelines using GitLab or Jenkins.
• Language Skills: You must be Bilingual (Spanish and English) with the ability to communicate complex technical risks to both local and international stakeholders.
• Certifications: Holding one of the following certifications: OSCP, CEH Practical, EWPT, AWS Security Specialty, BSCP up-to-date will be highly valued

Job Candidate Privacy Policy – https://www.rapyd.net/candidate-privacy-policy