Flex is building a finance super app for premium business owners â reimagining every single aspect of the financial workflow and financial services for any entrepreneur. The company has grown revenue 25x+ since publicly launching in September 2023 and is on track to achieve profitability by late 2025. Flex is focused on mid-market businesses ($3 - $100M revenue) that are largely overlooked by existing fintech solutions and reliant on slow and outdated regional banks. We are targeting a ~$1T revenue opportunity that is largely up for grabs.
Flex is a fully remote company and this role can be performed from anywhere.
The Role
We are looking for product owners who are excited to be part of our early story and help us build a category leading company. You will learn quickly, reflect on "the way the world should work", own outcomes, and drive the creation of financial products and experiences to help our customers reach their full potential. You should have a strong sense of ownership and enjoy taking projects from inception to release. As an early employee, youâll be working with a nimble team of committed and talented employees and having a large, long-term impact on Flex products and culture.
We are open to candidates from Canada, Mexico, the United States, Brazil and Colombia.
\n- Develop and own full end to end suite of payment rails, systems, and customer facing experiences across products.
- Drive the enhancement of financial services and products, including mobile apps, online account management tools, and virtual payment solutions. Continuously improve the user experience and add features to meet changing customer needs.
- Collaborate with internal stakeholders to identify opportunities within the organization's operational processes. Develop internal financial solutions, such as automated reporting tools, data analytics platforms, and workflow optimization systems, to increase efficiency and streamline operations.
- Work closely with compliance and legal to ensure that all products adhere to relevant financial regulations and industry standards. Mitigate potential risks through robust product design and implementation. Stay up-to-date with changes in industry regulations and security protocols.
- Conduct user research and market analysis to understand customer preferences, pain points, and emerging trends. Utilize these insights to inform product development decisions.
- Partner with engineering throughout the development lifecycle. Provide clear and detailed product requirements, prioritize features, and ensure the timely delivery of high-quality solutions. Implement necessary measures to safeguard customer data and ensure compliance with relevant laws.
- Utilize data analytics and performance metrics to assess product performance, identify areas for improvement, and make data-driven decisions to optimize products.
- Work closely with customer support teams to address customer inquiries, feedback, and issues related to products. Continuously strive to improve customer satisfaction and retention.
- Develop and communicate a clear product roadmap and strategy. Align the product vision with the Flex's overall objectives.
- Can run sprints.
- Extremely high trajectory and horsepower. Flex is a place for people who want to own outcomes.
- Proven experience as a Product Owner or similar role at a startup with a focus on financial products. We bring SaaS platform principles to traditional FinTech.
- A background in payments, stablecoins, forms of money movement, banking, etc. strongly considered, but not required.
- Solid knowledge of credit risk assessment, lending processes, and banking operations a nice to have.
- Familiarity with compliance standards, regulations, and security protocols relevant to the credit and banking sectors a nice to have. Willingness to become an expert is a must.
- Excellent communication, translation, collaboration, and stakeholder management skills.
- Analytical mindset with the ability to leverage data and market insights to inform product decisions.
- Proficiency in using product management tools and platforms to manage the product backlog and track progress.
- Passion for innovation, customer-centricity, and continuous improvement in product development.
- A visionary founding team with elite backgrounds and substantial industry experience.
- A substantial Series B round, providing ample growth and opportunities. You're still an early employee. Today is still day 1.
- A culture that supports remote work and values connection through semi-annual offsites.
- Support from leading Silicon Valley venture capitalists and industry insiders.
- An attractive compensation package, including comprehensive benefits and perks.
Interested? We'd love to hear from you
At Flex, we value passion, determination, and honesty. Even if you don't fully match the job specifics, we encourage you to apply. Unusual career paths and unique skills can help you stand out. We believe diversity drives our success.
Why Join Us
Flex is growing quickly â youâll help shape the direction of a product and company with real momentum.
Weâre well-capitalized with strong backing and a clear long-term vision.
Youâll work with a sharp, driven team that values autonomy, clarity, and quality.
Join ambitious builders who care deeply about winning together â and having fun while doing it.
Annual team on-sites. From Bogota to Mexico City, the entire Flex team gets together once a year to align and build camaraderie.
Please mention the word **CONSUMMATE** and tag RMTU3LjI0NS4yNDcuMTE4 when applying to show you read the job post completely (#RMTU3LjI0NS4yNDcuMTE4). This is a beta feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.
En QuePlan.cl estamos revolucionando la forma de elegir Isapres y haciendo más fácil la decisión para miles de personas en Chile, con presencia en Chile, Perú y Colombia. Buscamos impulsar nuestra ciberseguridad desde una perspectiva ofensiva para fortalecer nuestra postura y mantener la innovación en un entorno 100% digital. El/la candidato/a ideal se unirá a un equipo enfocado en seguridad de software y sistemas, apoyando prácticas de seguridad desde el diseño, desarrollo y operaciones, con impacto directo en la experiencia del usuario y la transparencia de nuestra oferta de planes de Isapres.
Apply directly on Get on Board.
Funciones
- Ejecutar pruebas de penetración en aplicaciones web, APIs REST/SOAP y servicios cloud para identificar vulnerabilidades críticas y proponer planes de remediación.
- Evaluar la seguridad con metodologías reconocidas como OWASP Top 10, OWASP Testing Guide y PTES, documentando hallazgos y niveles de riesgo.
- Elaborar informes técnicos y ejecutivos con evidencias, impacto y recomendaciones de mitigación.
- Colaborar con desarrollo y operaciones para revisión de código seguro e implementación de prácticas SDLC seguras.
- Participar en ejercicios de Red Team y simulaciones de ataques para fortalecer la postura de seguridad.
- Mantenerse actualizado sobre vulnerabilidades, exploits y herramientas de seguridad ofensiva.
Requisitos y experiencia
Formación en Ingeniería en Informática, Ciberseguridad o carreras afines (deseable diplomado en Seguridad de la Información).
Al menos 2 años de experiencia en seguridad ofensiva o pentesting web (blackbox, greybox y whitebox).
Dominio de OWASP Top 10 y experiencia con herramientas como Burp Suite Pro, OWASP ZAP, Nmap, SQLMap, Metasploit, Nuclei, ffuf, dirb, entre otras.
Conocimientos en Python o Bash; preferible manejo de JavaScript, PHP o Java para revisión de código. Entendimiento de redes y protocolos (TCP/IP, HTTP/HTTPS, DNS, TLS/SSL, OAuth, JWT, SAML).
Certificaciones como CEH, OSCP, eWPT o experiencia en ISO 27001 son deseables. Capacidad analítica, atención al detalle, proactividad, pensamiento crítico y buen trabajo en equipo. Ética profesional y alto estándar de confidencialidad.
Deseables
Certificaciones en seguridad ofensiva (CEH, OSCP, eWPT) y experiencia en entornos ISO 27001.
Experiencia trabajando en entornos Agile/SDLC y colaboración con equipos multifuncionales. Capacidad para comunicar riesgos de forma clara a stakeholders técnicos y no técnicos. Idioma inglés técnico es un plus.
Beneficios
Todas las herramientas necesarias para trabajar, computador y otros insumos.
Horario flexible con cierre de viernes a las 16:00 y 09:00-18:30 resto de la semana.
Vacaciones administrativas de libre uso, seguro complementario de salud catastrófico y dental, beneficios de Caja Los Andes, bonos por festividades y temporada navideña, y permisos por matrimonio o cumpleaños. Vestimenta semiformal y modalidad híbrida.
Ubicación en Santiago, oficina en Providencia (Metro Pedro de Valdivia).
En Agile Cybersecurity trabajamos con equipos especializados para llevar soluciones de ciberseguridad y servicios tecnológicos de alto impacto a nuestros clientes.
Buscamos un experto en ciberseguridad con foco en War Games y simulaciones ofensivas para integrarse a nuestro equipo multidisciplinario de ciberseguridad encargado de fortalecer las capacidades de detección, respuesta y resiliencia operativa de nuestro cliente del sector financiero en República dominicana. (1 dia presencial)
El profesional puede ser deRepublica Dominicana, Chile o Colombia y prestará apoyo en el proyecto considerando el diseño y ejecución de ejercicios avanzados de ciberseguridad, incluyendo simulaciones de ataques reales y ejercicios de crisis cibernética orientados a infraestructura crítica y entornos corporativos complejos.
En caso de ser necesario, la empresa cubrirá gastos de traslado y alojamiento.
This job is original from Get on Board.
Funciones
- Diseñar, estructurar y ejecutar War Games de ciberseguridad con escenarios realistas alineados a los objetivos del cliente.
- Planificar objetivos, reglas de participación, supuestos, métricas y criterios de éxito (detección, contención, erradicación y aprendizaje).
- Coordinar la simulación end-to-end: preparación del entorno, briefing, ejecución, registro de evidencias y post-análisis.
- Desarrollar y/o adaptar tácticas, técnicas y procedimientos (TTPs) para generar aprendizaje operativo sin comprometer la seguridad del entorno.
- Evaluar controles de seguridad y madurez de los equipos: SOC, IR, TI y gestión de riesgos, generando recomendaciones accionables.
- Analizar resultados, identificar brechas y proponer mejoras prioritarias con impacto en la reducción del riesgo.
- Facilitar la interacción entre equipos técnicos y stakeholders, asegurando comunicación clara durante todo el ejercicio.
- Documentar aprendizajes: informes ejecutivos/técnicos, lecciones aprendidas y plan de remediación.
Descripción del puesto
- Título profesional en Ingeniería Informática, Ciberseguridad o carrera afín.
- Mínimo 4 a 5 años de experiencia en ciberseguridad ofensiva o defensiva.
- Planificación y conducción de War Games (ataque/defensa) con objetivos claros y métricas verificables.
- Generación de escenarios, trazabilidad de evidencias y análisis posterior con enfoque en decisiones y mejoras.
- Evaluación de la capacidad de detección y respuesta, y alineación con procesos de incidente y gestión de riesgos.
- Presentación de resultados a nivel técnico y ejecutivo, priorizando acciones según impacto y esfuerzo.
- Experiencia sólida en ciberseguridad y en la ejecución/liderazgo de ejercicios tipo War Game.
- Habilidades analíticas para interpretar evidencias, detectar fallas de control y proponer remediaciones efectivas.
- Capacidad de documentación y comunicación: informes claros, estructurados y orientados a aprendizaje.
- Experiencia trabajando con equipos multidisciplinarios (SOC/IR/Infra/Seguridad/Gestión de riesgos).
- Marco de ciberseguridad del NIST
- ISO 27001
- Experiencia en:
- Pruebas de penetración
- Caza de amenazas
- Respuesta ante incidentes
- SIEM y EDR/XDR
- Análisis de vulnerabilidades
Beneficios
- Ambiente laboral grato, flexible, entretenido y dinámico.
- Modalidad: 1 dia presencial en Republica Dominicana
- En caso de ser necesario, la empresa cubrirá gastos de traslado y alojamiento.
- La modalidad de pago será por horas trabajadas.
- Se solicita a los postulantes indicar su tarifa por hora en la postulación.
Ignitvio is a US-based AI marketing automation agency serving home service businesses (roofing, HVAC), professional services, and financial advisors. We build done-for-you systems that help clients respond to leads faster, recover database revenue, and scale customer acquisition without adding sales staff.
We're small, founder-led, and fully remote. We're hiring our first full-stack engineer to own technical delivery alongside the founder. You'll work directly with the founder daily, ship to production, and see your work drive client revenue within days.
Why this role is different:
- Modern stack with real autonomy: Python, Supabase, Twilio, VAPI, Claude API
- AI tooling is core to how we work. Claude Code and Cursor daily
- First engineering hire = first in line for technical leadership as we scale
- US market exposure with LATAM time zone. No graveyard shifts
Apply to this job without intermediaries on Get on Board.
Job functions
You will be the primary technical hand for client implementations and internal systems, working directly with the founder.
What you will build:
- Custom AI voice agents using VAPI (configuring, prompting, integrating with our backend)
- Twilio-based SMS automations including missed call text-back and follow-up sequences
- n8n workflows for client lead routing, CRM sync, and notification systems
- Python and Flask services that orchestrate Claude API calls, data enrichment, and webhook handling
- Supabase schemas and queries for client data and analytics
- Cold outreach automation infrastructure (email sequencing, list management, response tracking)
- Internal tools that support our sales process: mystery shop data analysis, prospect research, personalization at scale
- Deployment and monitoring on Railway with proper production setup (Gunicorn, logging, error handling)
- Own security best practices in production code: webhook signature validation (Twilio, VAPI), Supabase RLS policies, input validation, secrets management via environment variables, rate limiting, and PII handling discipline. Every PR ships with these as defaults, not afterthoughts.
You will ship to production, own your code end-to-end, and translate ambiguous client requests into working systems. We move fast. Scope is often unclear at the start, and we expect you to scope, build, and deploy with minimal supervision.
Success in this role is measured by: production reliability of what you ship, speed from client request to working system, and how independently you handle ambiguous problems.
Qualifications and requirements
Required:
- 4+ years professional full-stack development experience
- Strong Python (Flask, FastAPI, or similar) — this is our primary backend
- Strong API integration experience including webhooks, REST, handling rate limits, retries, and failure modes
- SQL and database design experience (Postgres preferred)
- JavaScript, TypeScript, or Node.js working knowledge
- Git and GitHub workflow fluency
- Comfortable shipping to production and owning code end-to-end
- Fluent English (written and spoken). You will be on daily standups and weekly client-adjacent calls with the founder
- Strong communicator who explains technical tradeoffs clearly
- Self-directed. Able to take an ambiguous business problem, scope it, and ship a working solution
- Strong secure coding fundamentals: webhook signature validation, parameterized queries (no raw SQL injection vectors), input validation via Pydantic or similar, secrets via environment variables (never committed to git), and basic awareness of common attack surfaces. You don't need to be a security specialist, but every PR you ship will be evaluated for security hygiene.
- Attention to detail in reading job descriptions. Application secret phrase: CODE-FORWARD. Include this exact phrase as your answer to the secret phrase question in the application form. Applications missing this phrase are deleted unread.
Time zone requirement: You must be based in Latin America (Argentina, Colombia, Mexico, Chile, Uruguay, Brazil, or surrounding) with at least 4 hours of daily overlap with US Eastern Time (minimum 9am-1pm EST).
Who we are NOT looking for:
- Developers who need detailed specs for every task
- WordPress or Shopify generalists looking to transition into engineering
- Agencies or freelancers who want to subcontract this out
- Anyone wanting fully async work or graveyard-shift hours
Hiring process:
1. Application review (this posting)
2. 30-minute screening video call with the founder
3. Paid take-home project (4-6 hours of work, $200 flat fee)
4. 60-minute technical review call where you walk through your solution
5. 2-week paid trial at full salary with real codebase access
6. Decision and full contract offer
How to apply: GetOnBoard's application form will guide you. Required items:
1. Link to your GitHub and 1-2 production projects you have shipped (live URLs preferred)
2. Resume or LinkedIn profile
3. A 60-90 second video introducing yourself in English. Upload to Loom or YouTube (unlisted) and paste the link in the application form. Tell us your name, where you are based, your current work situation, and why this role interests you. We need to clearly hear your spoken English — written-only applications cannot be evaluated for this role.
4. Answer to the secret phrase question (read the full posting carefully — the phrase is hidden in the requirements above)
We respond within 5 business days to applications that include all four items.
Desirable skills
Bonus points for experience with any of:
- Claude Code, Cursor, or other AI coding tools
- VAPI or other voice AI platform integration
- n8n, Make, or Zapier automation building
- Next.js and Vercel deployment
- Twilio API (SMS or voice)
- Marketing automation platforms (GoHighLevel, HubSpot, ActiveCampaign)
- Cold email infrastructure (Instantly, Smartlead, deliverability tooling)
- LLM prompt engineering and evaluation experience
- Production observability and monitoring tools
- Postgres Row Level Security (RLS) policy configuration
- Production error tracking and observability tools (Sentry, Datadog, or similar)
- PII handling experience and awareness of compliance frameworks (TCPA, GDPR, HIPAA)
- Familiarity with prompt injection mitigation and LLM security considerations
- Rate limiting strategies for cost-sensitive APIs (LLMs, voice/SMS providers)
We will train the right person on any of these. We are hiring for engineering instincts and ownership, not exact tool match.
Conditions
- $2,800-$3,500 USD/month based on experience and trial performance
- Paid monthly via Deel (preferred) or Wise
- 90-day performance review with potential salary increase
- Ongoing 6-month review cycles
- Project completion bonuses for major client deliveries
- Full-time exclusive engagement (not a moonlighting gig)
- Fully remote, work from anywhere in Latin America
- Flexible hours with required overlap during US morning (9am-1pm EST minimum)
- Direct work with the founder, no middle management
- Clear growth path to technical lead as we scale
Ignitvio is a US-based AI marketing automation agency serving home service businesses (roofing, HVAC), professional services, and financial advisors. We build done-for-you systems that help clients respond to leads faster, recover database revenue, and scale customer acquisition without adding sales staff.
We're small, founder-led, and fully remote. We're hiring our first full-stack engineer to own technical delivery alongside the founder. You'll work directly with the founder daily, ship to production, and see your work drive client revenue within days.
Why this role is different:
- Modern stack with real autonomy: Python, Supabase, Twilio, VAPI, Claude API
- AI tooling is core to how we work. Claude Code and Cursor daily
- First engineering hire = first in line for technical leadership as we scale
- US market exposure with LATAM time zone. No graveyard shifts
This job is published by getonbrd.com.
Job functions
You will be the primary technical hand for client implementations and internal systems, working directly with the founder.
What you will build:
- Custom AI voice agents using VAPI (configuring, prompting, integrating with our backend)
- Twilio-based SMS automations including missed call text-back and follow-up sequences
- n8n workflows for client lead routing, CRM sync, and notification systems
- Python and Flask services that orchestrate Claude API calls, data enrichment, and webhook handling
- Supabase schemas and queries for client data and analytics
- Cold outreach automation infrastructure (email sequencing, list management, response tracking)
- Internal tools that support our sales process: mystery shop data analysis, prospect research, personalization at scale
- Deployment and monitoring on Railway with proper production setup (Gunicorn, logging, error handling)
- Own security best practices in production code: webhook signature validation (Twilio, VAPI), Supabase RLS policies, input validation, secrets management via environment variables, rate limiting, and PII handling discipline. Every PR ships with these as defaults, not afterthoughts.
You will ship to production, own your code end-to-end, and translate ambiguous client requests into working systems. We move fast. Scope is often unclear at the start, and we expect you to scope, build, and deploy with minimal supervision.
Success in this role is measured by: production reliability of what you ship, speed from client request to working system, and how independently you handle ambiguous problems.
Qualifications and requirements
Required:
- 4+ years professional full-stack development experience
- Strong Python (Flask, FastAPI, or similar) — this is our primary backend
- Strong API integration experience including webhooks, REST, handling rate limits, retries, and failure modes
- SQL and database design experience (Postgres preferred)
- JavaScript, TypeScript, or Node.js working knowledge
- Git and GitHub workflow fluency
- Comfortable shipping to production and owning code end-to-end
- Fluent English (written and spoken). You will be on daily standups and weekly client-adjacent calls with the founder
- Strong communicator who explains technical tradeoffs clearly
- Self-directed. Able to take an ambiguous business problem, scope it, and ship a working solution
- Strong secure coding fundamentals: webhook signature validation, parameterized queries (no raw SQL injection vectors), input validation via Pydantic or similar, secrets via environment variables (never committed to git), and basic awareness of common attack surfaces. You don't need to be a security specialist, but every PR you ship will be evaluated for security hygiene.
- Attention to detail in reading job descriptions. Application secret phrase: CODE-FORWARD. Include this exact phrase as your answer to the secret phrase question in the application form. Applications missing this phrase are deleted unread.
Time zone requirement: You must be based in Latin America (Argentina, Colombia, Mexico, Chile, Uruguay, Brazil, or surrounding) with at least 4 hours of daily overlap with US Eastern Time (minimum 9am-1pm EST).
Who we are NOT looking for:
- Developers who need detailed specs for every task
- WordPress or Shopify generalists looking to transition into engineering
- Agencies or freelancers who want to subcontract this out
- Anyone wanting fully async work or graveyard-shift hours
Hiring process:
1. Application review (this posting)
2. 30-minute screening video call with the founder
3. Paid take-home project (4-6 hours of work, $200 flat fee)
4. 60-minute technical review call where you walk through your solution
5. 2-week paid trial at full salary with real codebase access
6. Decision and full contract offer
How to apply: GetOnBoard's application form will guide you. Required items:
1. Link to your GitHub and 1-2 production projects you have shipped (live URLs preferred)
2. Resume or LinkedIn profile
3. A 60-90 second video introducing yourself in English. Upload to Loom or YouTube (unlisted) and paste the link in the application form. Tell us your name, where you are based, your current work situation, and why this role interests you. We need to clearly hear your spoken English — written-only applications cannot be evaluated for this role.
4. Answer to the secret phrase question (read the full posting carefully — the phrase is hidden in the requirements above)
We respond within 5 business days to applications that include all four items.
Desirable skills
Bonus points for experience with any of:
- Claude Code, Cursor, or other AI coding tools
- VAPI or other voice AI platform integration
- n8n, Make, or Zapier automation building
- Next.js and Vercel deployment
- Twilio API (SMS or voice)
- Marketing automation platforms (GoHighLevel, HubSpot, ActiveCampaign)
- Cold email infrastructure (Instantly, Smartlead, deliverability tooling)
- LLM prompt engineering and evaluation experience
- Production observability and monitoring tools
- Postgres Row Level Security (RLS) policy configuration
- Production error tracking and observability tools (Sentry, Datadog, or similar)
- PII handling experience and awareness of compliance frameworks (TCPA, GDPR, HIPAA)
- Familiarity with prompt injection mitigation and LLM security considerations
- Rate limiting strategies for cost-sensitive APIs (LLMs, voice/SMS providers)
We will train the right person on any of these. We are hiring for engineering instincts and ownership, not exact tool match.
Conditions
- $2,800-$3,500 USD/month based on experience and trial performance
- Paid monthly via Deel (preferred) or Wise
- 90-day performance review with potential salary increase
- Ongoing 6-month review cycles
- Project completion bonuses for major client deliveries
- Full-time exclusive engagement (not a moonlighting gig)
- Fully remote, work from anywhere in Latin America
- Flexible hours with required overlap during US morning (9am-1pm EST minimum)
- Direct work with the founder, no middle management
- Clear growth path to technical lead as we scale
Flex is building a finance super app for premium business owners â reimagining every single aspect of the financial workflow and financial services for any entrepreneur. The company has grown revenue 25x+ since publicly launching in September 2023 and is on track to achieve profitability by late 2025. Flex is focused on mid-market businesses ($3 - $100M revenue) that are largely overlooked by existing fintech solutions and reliant on slow and outdated regional banks. We are targeting a ~$1T revenue opportunity that is largely up for grabs.
Flex is a fully remote company and this role can be performed from anywhere.
The Role
We are looking for product owners who are excited to be part of our early story and help us build a category leading company. You will learn quickly, reflect on "the way the world should work", own outcomes, and drive the creation of financial products and experiences to help our customers reach their full potential. You should have a strong sense of ownership and enjoy taking projects from inception to release. As an early employee, youâll be working with a nimble team of committed and talented employees and having a large, long-term impact on Flex products and culture.
We are open to candidates from Canada, Mexico, the United States, Brazil and Colombia.
\n- Develop and own full end to end suite of payment rails, systems, and customer facing experiences across products.
- Drive the enhancement of financial services and products, including mobile apps, online account management tools, and virtual payment solutions. Continuously improve the user experience and add features to meet changing customer needs.
- Collaborate with internal stakeholders to identify opportunities within the organization's operational processes. Develop internal financial solutions, such as automated reporting tools, data analytics platforms, and workflow optimization systems, to increase efficiency and streamline operations.
- Work closely with compliance and legal to ensure that all products adhere to relevant financial regulations and industry standards. Mitigate potential risks through robust product design and implementation. Stay up-to-date with changes in industry regulations and security protocols.
- Conduct user research and market analysis to understand customer preferences, pain points, and emerging trends. Utilize these insights to inform product development decisions.
- Partner with engineering throughout the development lifecycle. Provide clear and detailed product requirements, prioritize features, and ensure the timely delivery of high-quality solutions. Implement necessary measures to safeguard customer data and ensure compliance with relevant laws.
- Utilize data analytics and performance metrics to assess product performance, identify areas for improvement, and make data-driven decisions to optimize products.
- Work closely with customer support teams to address customer inquiries, feedback, and issues related to products. Continuously strive to improve customer satisfaction and retention.
- Develop and communicate a clear product roadmap and strategy. Align the product vision with the Flex's overall objectives.
- Can run sprints.
- Extremely high trajectory and horsepower. Flex is a place for people who want to own outcomes.
- Proven experience as a Product Owner or similar role at a startup with a focus on financial products. We bring SaaS platform principles to traditional FinTech.
- A background in payments, stablecoins, forms of money movement, banking, etc. strongly considered, but not required.
- Solid knowledge of credit risk assessment, lending processes, and banking operations a nice to have.
- Familiarity with compliance standards, regulations, and security protocols relevant to the credit and banking sectors a nice to have. Willingness to become an expert is a must.
- Excellent communication, translation, collaboration, and stakeholder management skills.
- Analytical mindset with the ability to leverage data and market insights to inform product decisions.
- Proficiency in using product management tools and platforms to manage the product backlog and track progress.
- Passion for innovation, customer-centricity, and continuous improvement in product development.
- A visionary founding team with elite backgrounds and substantial industry experience.
- A substantial Series B round, providing ample growth and opportunities. You're still an early employee. Today is still day 1.
- A culture that supports remote work and values connection through semi-annual offsites.
- Support from leading Silicon Valley venture capitalists and industry insiders.
- An attractive compensation package, including comprehensive benefits and perks.
Interested? We'd love to hear from you
At Flex, we value passion, determination, and honesty. Even if you don't fully match the job specifics, we encourage you to apply. Unusual career paths and unique skills can help you stand out. We believe diversity drives our success.
Why Join Us
Flex is growing quickly â youâll help shape the direction of a product and company with real momentum.
Weâre well-capitalized with strong backing and a clear long-term vision.
Youâll work with a sharp, driven team that values autonomy, clarity, and quality.
Join ambitious builders who care deeply about winning together â and having fun while doing it.
Annual team on-sites. From Bogota to Mexico City, the entire Flex team gets together once a year to align and build camaraderie.
Please mention the word **CONSUMMATE** and tag RMTU3LjI0NS4yNDcuMTE4 when applying to show you read the job post completely (#RMTU3LjI0NS4yNDcuMTE4). This is a beta feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.
En QuePlan.cl estamos revolucionando la forma de elegir Isapres y haciendo más fácil la decisión para miles de personas en Chile, con presencia en Chile, Perú y Colombia. Buscamos impulsar nuestra ciberseguridad desde una perspectiva ofensiva para fortalecer nuestra postura y mantener la innovación en un entorno 100% digital. El/la candidato/a ideal se unirá a un equipo enfocado en seguridad de software y sistemas, apoyando prácticas de seguridad desde el diseño, desarrollo y operaciones, con impacto directo en la experiencia del usuario y la transparencia de nuestra oferta de planes de Isapres.
Apply directly from Get on Board.
Funciones
- Ejecutar pruebas de penetración en aplicaciones web, APIs REST/SOAP y servicios cloud para identificar vulnerabilidades críticas y proponer planes de remediación.
- Evaluar la seguridad con metodologías reconocidas como OWASP Top 10, OWASP Testing Guide y PTES, documentando hallazgos y niveles de riesgo.
- Elaborar informes técnicos y ejecutivos con evidencias, impacto y recomendaciones de mitigación.
- Colaborar con desarrollo y operaciones para revisión de código seguro e implementación de prácticas SDLC seguras.
- Participar en ejercicios de Red Team y simulaciones de ataques para fortalecer la postura de seguridad.
- Mantenerse actualizado sobre vulnerabilidades, exploits y herramientas de seguridad ofensiva.
Requisitos y experiencia
Formación en Ingeniería en Informática, Ciberseguridad o carreras afines (deseable diplomado en Seguridad de la Información).
Al menos 2 años de experiencia en seguridad ofensiva o pentesting web (blackbox, greybox y whitebox).
Dominio de OWASP Top 10 y experiencia con herramientas como Burp Suite Pro, OWASP ZAP, Nmap, SQLMap, Metasploit, Nuclei, ffuf, dirb, entre otras.
Conocimientos en Python o Bash; preferible manejo de JavaScript, PHP o Java para revisión de código. Entendimiento de redes y protocolos (TCP/IP, HTTP/HTTPS, DNS, TLS/SSL, OAuth, JWT, SAML).
Certificaciones como CEH, OSCP, eWPT o experiencia en ISO 27001 son deseables. Capacidad analítica, atención al detalle, proactividad, pensamiento crítico y buen trabajo en equipo. Ética profesional y alto estándar de confidencialidad.
Deseables
Certificaciones en seguridad ofensiva (CEH, OSCP, eWPT) y experiencia en entornos ISO 27001.
Experiencia trabajando en entornos Agile/SDLC y colaboración con equipos multifuncionales. Capacidad para comunicar riesgos de forma clara a stakeholders técnicos y no técnicos. Idioma inglés técnico es un plus.
Beneficios
Todas las herramientas necesarias para trabajar, computador y otros insumos.
Horario flexible con cierre de viernes a las 16:00 y 09:00-18:30 resto de la semana.
Vacaciones administrativas de libre uso, seguro complementario de salud catastrófico y dental, beneficios de Caja Los Andes, bonos por festividades y temporada navideña, y permisos por matrimonio o cumpleaños. Vestimenta semiformal y modalidad híbrida.
Ubicación en Santiago, oficina en Providencia (Metro Pedro de Valdivia).