Senior Security Engineer
nelo
Security Engineer
About Nelo
Nelo is a leading consumer fintech and e-commerce platform in Mexico, with >$500MM in annualized GMV and >$75MM in annualized revenue. Our mission is to increase the buying power of consumers in Latin America, and we are doing so by building a modern alternative to credit cards. Nelo has raised over $40M of venture capital from investors including Homebrew, Two Sigma Ventures and Susa Ventures. Nelo has additionally raised a $100M asset credit facility from Victory Park Capital. Our lean team includes experienced leaders from top technology companies including Uber, Amazon, Rappi, and DiDi. We pride ourselves on our velocity, intellectual rigor, and efficiency. Nelo has offices in Mexico City and New York City.
About the role
Security has been part of how Nelo builds software from day one. As we scale, we are creating a dedicated Security Engineer role with broad ownership across application security, cloud infrastructure, and internal controls.
This is a hands-on role for someone who wants to define the security function rather than inherit it. You will decide where to invest, implement controls yourself, and balance risk against velocity in a fast-moving lending business. You will work directly with the CTO, the CEO, and engineering leadership.
This role is in-person at our Mexico City office in Condesa.
What you'll do
Build secure-by-default systems
Design and implement security guardrails across cloud infrastructure and developer workflows
Improve IAM, secrets management, endpoint management, and access controls across production systems
Harden AWS infrastructure using Terraform and policy-as-code
Increase observability for security-relevant events and anomalies
Treat security as an engineering problem
Write code, configs, and tooling to enforce controls
Replace manual reviews with automation wherever it makes sense
Make the secure path the default path for engineers
Run external security programs
Own penetration tests and the bug bounty program end-to-end
Triage findings, partner with engineers on fixes, and turn one-off issues into systemic improvements
Drive certifications and compliance
Take Nelo through SOC 2 Type 1 and Type 2
Build automated evidence collection so compliance does not become a recurring tax on the team
Raise the bar across engineering
Set the standard through your own implementations
Review designs and PRs with a security-first lens
Why you should apply
You have built security programs at a startup before and know the difference between security theater and controls that actually reduce risk. You can tell which one a given investment is.
You write code and ship infrastructure yourself. Terraform, Python, Go, whatever the job calls for. You do not hand off implementation to someone else and call it done.
You have deep AWS instincts. You know where the sharp edges are in IAM, how to read CloudTrail, when GuardDuty findings matter and when they are noise.
You have taken a company through SOC 2 or a comparable certification and you know how to run it without grinding engineering to a halt. Automated evidence collection is the baseline you build toward, not a stretch goal.
You are comfortable with AI tools as part of your daily workflow. You use Claude Code or similar to move faster, and you have opinions about where they belong in a security review and where they do not.
You can hold a strong security position and still ship product on time. You see velocity and security as the same problem, not opposing ones.
Why you should NOT apply
You want to manage a team of security engineers. There is no team to manage. You are the team, at least for the foreseeable future. If your value is in delegating, this role will not fit.
You see security as a gatekeeping function. The job is to make the secure path the easiest path, not to block PRs and write policy documents that nobody reads. If your instinct is to slow things down rather than redesign them, the engineering team will route around you.
You need a mature environment with established tooling and processes. Some of this exists. Most of it does not. You are building the function, not stepping into one.
You treat compliance as a separate workstream from engineering. SOC 2 evidence at Nelo will be collected by code, not by a GRC tool with a person filling out questionnaires. If that distinction is not natural to you, this will feel like the wrong job.
You think AI tools are a gimmick. Every team at Nelo uses AI in daily workflows. If you are skeptical of agentic coding tools or refuse to use them, you will be working against the grain of how engineering moves here.
How we work
~60 people across CDMX and New York. Lean, fast, opinionated about quality.
This role is based in Mexico City and is expected to be in-office given the proximity required with engineering and infrastructure work.
Every team at Nelo uses AI in daily workflows. Engineering is no exception.
Who you are
Required
Engineering background with substantial time spent on security in production environments
Strong hands-on experience with cloud security fundamentals, ideally on AWS
Comfortable building and modifying infrastructure with Terraform or equivalent IaC tooling
You ship code and own outcomes, not just recommendations
Strong signals
You have taken a company through SOC 2, ISO 27001, or a comparable certification
You have personally run a bug bounty program or managed external pentests
Depth in AWS security primitives such as GuardDuty, CloudTrail, IAM, VPC, KMS, and security groups
You use Claude Code or other agentic coding tools as part of your daily workflow
Interview process
Conversation with the hiring manager
Case study
On-site panel
Fast decision
Compensation and benefits
Competitive salary and meaningful equity
100% medical, dental, and vision coverage
Unlimited PTO and extended parental leave
- ...PowerToFly is looking for a Senior Security Platforms Engineer to architect robust endpoint security solutions and manage enterprise security effectively. You will implement tools to enhance security and ensure smooth integration across all systems. The ideal candidate...SeniorTrabajo híbrido
- ...Link-Worldwide is seeking a Senior Security Platforms Engineer in Mexico City to design and implement endpoint security solutions, oversee administration, and ensure compliance. The ideal candidate must have over 5 years of experience in endpoint security engineering...SeniorTrabajo híbrido
- ...Bayer CropScience Limited is seeking a Senior Security & Authorization Engineer in Mexico City. This position involves designing and maintaining authorization concepts in SAP S/4HANA, leading the lifecycles of SAP roles, and managing user administration processes....Senior
- ...Link-Worldwide seeks a skilled professional with over 5 years of experience in network security. This position offers fully remote work with excellent compensation, allowing flexibility in working hours. The ideal candidate will excel at identifying vulnerabilities and...SeniorRemoto
- ...Link-Worldwide is seeking a skilled cybersecurity engineer to join their team in Mexico City. This role involves overseeing the health and performance of security platforms like Microsoft Sentinel and Microsoft Defender. The successful candidate will exhibit strong critical...SeniorTrabajo híbrido3 días a la semana
- ...Position Overview link-worldwide is seeking a skilled professional with 5+ years in network security, adept at identifying security vulnerabilities and developing technical solutions. This role offers 100% remote work, excellent compensation in USD or your local currency...SeniorRemotoHorario flexible
- ...Security Engineer About Nelo Nelo is a leading consumer fintech and e-commerce platform in Mexico, with $500MM in annualized GMV and... ...our Mexico City office in Condesa. What you’ll do Build secure‑by‑default systems Design and implement security guardrails...SeniorTrabajar en la oficina
- ...Link-Worldwide is seeking an experienced Network Security Engineer in Mexico City, specializing in F5 Load Balancers and Palo Alto Firewalls. The candidate will design, implement, and manage a secure and scalable network infrastructure. This role requires extensive...Senior
- ...About the Role In this opportunity as Senior Security Platforms Engineer, you will: Architect and implement robust endpoint security solutions... ...EDR/EPP, Vulnerability Management, DLP and AI Security to secure enterprise systems and end-user devices. Drive the adoption...SeniorTrabajar en la oficinaTrabajo híbridoHorario flexible2 días a la semana3 días a la semana
- ...Link-Worldwide is seeking a Principal Application Security Engineer based in Mexico City to help secure applications used by millions. The role involves leading security initiatives, conducting threat modeling, and implementing security automation tools. The ideal candidate...SeniorTiempo completoTrabajo híbridoLunes a viernes
- ...Application Security Engineer (Senior) ID71672 Full time | AgileEngine | Mexico Posted On 06/18/2026 Job Information City Ciudad de México... ...security layers within the SDLC, engineering AI-enabled secure code scanning, hardened baseline automation, and CI/CD...SeniorTiempo completoTrabajar en la oficinaRemoto
- ...Link-Worldwide is seeking an experienced Specialist Engineering professional in Mexico to design and engineer software solutions, ensuring user experience as a... .... Responsibilities include implementing security measures, incident resolution, and ensuring service...Senior
- ...Senior Cloud Security Engineer Responsibilities Your responsibilities include: Develop, implement, and manage Azure Policies to enforce governance and compliance standards across Azure environments. Provide technical guidance and support to application teams...SeniorDesde casaRemotoHorario flexible
- ...Link-Worldwide in Ciudad de México is seeking a T3 Security Engineer to lead complex security initiatives and manage cybersecurity operations. You will design and implement security controls while conducting advanced threat analysis to protect organizational assets....Senior
- ...Bayer CropScience Limited in Mexico City is seeking a Senior Security & Authorization Engineer to focus on SAP role design and authorization concepts. The successful candidate will design, build, and maintain authorization structures in alignment with compliance and business...Senior
- ...Link-Worldwide is looking for a hands-on Security Automation Engineer to design and maintain automated security solutions in cloud environments. This role involves developing infrastructure-as-code and implementing security tooling, primarily focused on AWS, Splunk, and...Senior
- ...Link-Worldwide en Ciudad de México busca un Especialista Senior en Ciberseguridad para administrar plataformas críticas de seguridad Cisco. Se requiere experiencia en Cisco Firepower, ISE y gestión de vulnerabilidades. El candidato ideal deberá asegurar el cumplimiento...Senior
- ...Link-Worldwide seeks a Senior Application Security Engineer in Mexico City to lead secure code scanning initiatives and integrate security measures into development processes. You will collaborate with Java and Python teams to enhance coding practices using AI and...Senior
- ...Link-Worldwide is seeking a Security Architect to revolutionize Banamex's security framework. This role involves designing a new security fabric that protects millions while empowering engineering teams. You will influence high-level architectural decisions and work on...Senior
- ...Overview Link-Worldwide in Mexico City is looking for a skilled Cyber Security Architect/Engineer to develop innovative cybersecurity solutions. The idóneo candidate will enhance defenses and collaborate on sales strategies while maintaining excellent customer relationships...SeniorTrabajo híbrido
- ...DXC Technology Inc. is looking for a highly skilled Network Security Engineer in Mexico City. The successful candidate will be responsible for designing and managing secure network infrastructure with a focus on F5 Load Balancers and Palo Alto Firewalls. A strong background...Senior
$45,000
...Link-Worldwide busca un Ingeniero de Soporte de Seguridad de Datos Senior para su equipo global. Con más de 5 años de experiencia en infraestructura de TI y ciberseguridad, serás responsable de administrar y mantener IBM Guardium, previniendo fugas de información y cumpliendo...SeniorTrabajo híbrido- ...Link-Worldwide is looking for a Senior Information Security Operations (ISO) Manager to lead initiatives that prevent and respond to cyber-attacks. This role involves overseeing a team and ensuring alignment with Citi's data security policy. The ideal candidate will...Senior
- ...Link-Worldwide in Mexico City is seeking a Senior Site Reliability Engineer to ensure operational resilience across a multi-cloud security program including Azure, AWS, and GCP.... ...pipelines, while acting on telemetry to secure cloud workloads under strict compliance standards...SeniorHorario flexible
- ...Buscamos un Identity Engineer senior con amplia experiencia comprobable para liderar el diseño e implementación de soluciones de identidad externa (CIAM). El objetivo principal es integrar Microsoft Entra External ID (B2C) en aplicaciones web y móviles, asegurando flujos...SeniorIndefinidoTiempo completo
- ...Link-Worldwide is seeking a skilled Engineer Sr Analyst to oversee engineering activities, including the design and development of infrastructure... ...possess 5-8 years of relevant experience, with expertise in security systems, project management, C/C++, and UNIX. This full-time...SeniorTiempo completo
- ...Link-Worldwide is seeking an experienced Specialist Engineering professional in Valle de Chalco Solidaridad, Mexico. In this role, you will engineer software with a focus on customer experience and implement security measures for systems and networks. The ideal candidate...Senior
- ...NOW HIRING: Principal Application Security Engineer Mexico City Candidates Only Join The Functionary and help secure world‑class applications serving millions of users across the globe! Are you passionate about Application Security, Secure Development Lifecycles, Cloud...SeniorTiempo completoContratoRemotoTrabajo híbridoLunes a viernes
$65,000 por año
...Ingeniero(a) Senior de Redes y Seguridad Perimetral Ubicación: Ciudad de México / Presencial... ...FortiOS), Check Point, Cisco Firepower / Secure Firewall. VPNs: Implementación de... ...Alto: PCNSA (Administrator) o PCNSE (Engineer). Seguridad General: CompTIA Security+...SeniorPrácticaTiempo completoRemoto- ...Baker Hughes Company is seeking a Senior Cloud Security Engineer to lead Azure policy governance and compliance initiatives. This role involves developing and managing Azure Policies, guiding application teams, and leading a development team in Azure projects. The...SeniorHorario flexible
¿Desea recibir más vacantes?
Suscríbase y reciba vacantes similares a Senior Security Engineer. ¡Sea el primero en aplicar!
- ingeniero seguridad e higiene Ciudad de México
- ingeniero seguridad Ciudad de México
- ingeniero de seguridad Ciudad de México
- ejecutivo de ventas senior Ciudad de México
- full stack senior Ciudad de México
- auditor senior ey Ciudad de México
- senior backend engineer Ciudad de México
- senior Ciudad de México
- programador senior Ciudad de México
- senior IT manager Ciudad de México

