Block is one company built from many blocks, all united by the same purpose of economic empowerment. The blocks that form our foundational teams - People, Finance, Counsel, Hardware, Information Security, Platform Infrastructure Engineering, and more - provide support and guidance at the corporate level. They work across business groups and around the globe, spanning time zones and disciplines to develop inclusive People policies, forecast finances, give legal counsel, safeguard systems, nurture new initiatives, and more. Every challenge creates possibilities, and we need different perspectives to see them all. Bring yours to Block. The Role The Detection and Response Team (DART) identifies, investigates, and responds to threats across Block's endpoints, cloud infrastructure, identity systems, SaaS platforms, vendor environments, and products. We are an engineering-led team: we build detections, automate investigations and response workflows, and prioritize our work around real attacker behavior. DART operates from an engineering-first, automation-first mindset. Our bar is simple: the alerts a human sees are the alerts a human has to see. We build investigation workflows and triage systems that resolve routine work before it becomes toil. The human work in this role centers on the alerts and investigations that require judgment: ambiguous signals, novel attacker behavior, high-impact incidents, and messy cross-environment investigations. You will help build that model by developing active and automated triage capabilities. DART's Monitoring & Triage function is both the front line and the front door. You will own daily security intake and will often be the first person partners across Block talk to when something does not look right. That can mean a high-confidence endpoint detection, a walk-in concern from Legal or Compliance, or a critical vulnerability. You are expected to ask the right questions, scope the issue quickly, make sound decisions, and either drive the work to resolution or route it cleanly. This is an operational security engineering role. The alert queue is your laboratory. The other half of this role is turning missing signal into better systems: sharper detections, richer context, stronger close-vs-escalate logic, and tighter responder-facing workflows. You're the right person for this role if you want to catch things, and then build things that catch things for you. You Will - Own daily security intake across alert queues, Slack channels, and walk-in escalations from teams across Block, acting as the welcoming front door for security ops. - Investigate and drive resolution of security events end-to-end, including endpoint detections, cloud/SaaS alerts, malware, supply chain issues, and hands-on-keyboard activity. - Pivot across endpoint, identity, cloud, SaaS, network, DNS, and application telemetry to build timelines, test hypotheses, determine scope, and assess impact. - Run nuanced investigations across non-uniform environments where device posture, identity models, and telemetry differ significantly. - Consistently turn recurring investigative patterns into durable improvements: recommend new detections, automate triage workflows, refine automation logic, and clarify escalation paths. - Identify structural gaps surfaced during investigations (weak controls, missing telemetry, outdated runbooks) and push for durable fixes rather than one-off workarounds. - Define containment criteria, organize investigation threads, coordinate responders, drive status updates, and follow through on lessons learned. - Lead cross-team efforts that improve investigation quality, response readiness, and operational maturity; and present interesting findings to the broader team and participate in tabletop exercises and post-incident reviews. You Have - 5+ years of experience in detection and response, incident response, security engineering, or equivalent depth of hands-on investigative experience. - Strong investigative judgment across endpoint, identity, cloud, SaaS, network, and application security signals; AWS and Kubernetes security fundamentals, cloud-native logging, networking, and Linux systems. - Experience leading incidents end-to-end, including scoping, containment, evidence collection, impact assessment, and stakeholder communication. - Strong SQL and log-query/analysis skills, with the ability to work effectively across large, messy telemetry sets without waiting for a perfect dashboard. - Current, practical working knowledge of attacker TTPs across macOS, Windows, and Linux with live response and forensics. - An established AI development workflow. - Experience building, tuning, or maintaining detections, investigation workflows, or internal security tooling. - An engineering mindset: you start looking for the detection, workflow, control, or automation change that will eliminate a manual pattern. - The ability to work independently across time zones, managing competing priorities with empathy, patience, and curiosity. Nice-to-have qualities that stand out - Experience with threat intelligence and threat hunting. - Experience with malware analysis, forensic artifact collection, or reversing. - Experience working with human-in-the-loop automation or AI-assisted investigation systems We're working to build a more inclusive economy where our customers have equal access to opportunity, and we strive to live by these same values in building our workplace. Block is a proud equal opportunity employer. We work hard to evaluate all employees and job applicants consistently, without regard to identity or other legally protected class. We believe in being fair, and are committed to an inclusive interview experience, including providing reasonable accommodations to disabled applicants throughout the recruitment process. We encourage applicants to share any needed accommodations with their recruiter, who will treat these requests as confidentially as possible. Want to learn more about what we're doing to build a workplace that is fair and square? Check out our I+D page . Block is a globally distributed company and this role will require working with other employees in multiple time zones. You may be required to perform work outside of normal business as part of this role Application Guidelines Candidates may submit up to 9 active applications within a 60-day period. Reapplications to the same role are accepted 90 days after a previous application has been reviewed. Use of AI in Our Hiring Process We may use automated AI tools to evaluate job applications for efficiency and consistency. These tools comply with local regulations, including bias audits, and we handle all personal data in accordance with state and local privacy laws. Contact us here with hiring practice or data usage questions. Every benefit we offer is designed with one goal: empowering you to do the best work of your career while building the life you want. Remote work, medical insurance, flexible time off, retirement savings plans, and modern family planning are just some of our offering. Check out our other benefits at Block. Block, Inc. (NYSE: XYZ) builds technology to increase access to the global economy. Each of our brands unlocks different aspects of the economy for more people. Square makes commerce and financial services accessible to sellers. Cash App is the easy way to spend, send, and store money. Afterpay is transforming the way customers manage their spending over time. TIDAL is a music platform that empowers artists to thrive as entrepreneurs. Bitkey is a simple self-custody wallet built for bitcoin. Proto is a suite of bitcoin mining products and services. Together, we're helping build a financial system that is open to everyone.

Role Description Consultor Funcional de Seguridad y Roles Senior para liderar el diseño, definición e implementación del modelo de gobierno de accesos en el marco del proyecto de migración core de SAP a Oracle Fusion Cloud. - Responsable de traducir los procesos operativos del negocio en una estructura de seguridad robusta. - Garantizar la continuidad operativa y el estricto cumplimiento de las auditorías de Segregación de Funciones (SoD). - Experiencia demostrable en proyectos de implantación de Oracle Fusion Cloud (SaaS) utilizando la consola de seguridad de Oracle. - Entendimiento alto de los procesos de negocio estándar de un ERP para identificar conflictos de funciones (ej. Compras vs. Pagos). - Conocimiento previo en la estructura de roles de SAP (Perfiles, Autorizaciones) para facilitar el proceso de migración de datos de seguridad. Qualifications - Experiencia en Oracle Fusion Cloud (SaaS). - Conocimiento en procesos de negocio estándar de un ERP. - Experiencia en la estructura de roles de SAP. Requirements - Cantidad: 1. - País de Asignación: Colombia. - Tipo de Proyecto: Implementación. - Inicio del Proyecto: 2026-06-10. - Duración del Proyecto: 12 meses. - Modalidad de Trabajo: Remoto. - Idioma: Español.

Role Description Provides management consulting services and technology/industry expertise in support of business and enterprise needs. Liaises with stakeholders to understand problems and opportunities, to facilitate the organization's goals by understanding business vision, objectives, and key performance indicators. - Aligns technology requirements and solutions to a real business need, meets essential quality standards, and ensures approval by all relevant stakeholders. - Acts as a consultant to business partners in collaboration with the project team in strategy and planning sessions (e.g. multi-year and annual plans), reviews, or inspections to ensure the quality of work products. - Promotes new processes and methodologies, emerging technologies, and agile, and aligns to the unique project team requirements. - Recommends and implements solutions based on analysis of issues and implications for the business. - Identifies emerging issues and trends to inform decision-making. - Assists in the development of strategic plans. - Helps determine business priorities and best sequence for execution of business/group strategy. - Breaks down strategic problems, and analyses data and information to provide insights and recommendations. - Understands and follows a project requirements management plan so that activities and milestones of the project team can be measured against the goals of the plan. - Facilitates discussions and follows a disciplined approach to plan, elicit, analyze, document, communicate, and manage business requirements with stakeholders; applies a variety of elicitation techniques to probe, challenge, and understand requirements. - Provides analytical support and insights to identified / assigned user areas to support relative product, channel, and business development initiatives (e.g. product, portfolio, and profitability analytics, and customer analytics). - Collaborates in root-cause analysis to determine underlying causes and participates in problem resolution. - Builds exceptional relationships with internal and external stakeholders. - Liaises with the business and the technology development and support groups. - Aligns business needs to vision/goals to ensure development teams to translate them into detailed design specifications and code. - Assesses project impact, benefits, and risks when scope changes. - Communicates and engages across stakeholder groups during construction and delivery of solutions. - Assesses the quality of supporting documentation, including business and process requirements documents, to ensure proper analysis supports recommendations or demonstrate continued alignment to strategic objectives. - Develops a deep understanding of organizational complexity to build strong rapport with internal stakeholders for the construction and delivery of the solution. - Stays abreast of industry technical and business trends through benchmarking and/or participation in professional associations. - Focus is primarily on business/group within BMO; may have broader, enterprise-wide focus. - Provides specialized consulting, analytical and technical support. - Exercises judgment to identify, diagnose, and solve problems within given rules. - Works independently and regularly handles non-routine situations. - Broader work or accountabilities may be assigned as needed. - Take measured risks while protecting the bank by applying our Risk Management Framework in the execution of your role, in line with our Risk Culture and within our approved Risk Appetite, making sound and risk informed decisions that align to business strategy, protect assets, and adhere to applicable policy documents (Frameworks, Policies, Standards, Procedures and Supporting documents), laws and regulations. Qualifications - Typically between 5 - 7 years of relevant experience and post-secondary degree in related field of study or an equivalent combination of education and experience. - Business Analysis Accreditation is an asset. - Knowledge of software development practice, concepts/methodologies (i.e. waterfall, Agile, iterative), and technologies obtained through formal training and/or work experience. - Knowledge of one or more requirements analysis and problem decomposition techniques. - Knowledge of technical/business environment (e.g. Microsoft business technologies and applications, relational databases, and SharePoint). - Understanding of industry standards and standard business capabilities. - Knowledge of business analysis, project delivery practices and standards across the project lifecycle. - Possesses a deep understanding and problem solving ability of information technology of various complexities. - Understanding of techniques associated with data modeling, process modeling, and user-centered design within the context of the organizational standards. - Familiar with business strategy and assessments (i.e. feasibility studies, business cases, cost/benefit analyses, project sizing and costing, and current state analysis/needs assessments). - Deep knowledge and technical proficiency gained through extensive education and business experience. - Verbal & written communication skills - In-depth. - Collaboration & team skills - In-depth. - Analytical and problem solving skills - In-depth. - Influence skills - In-depth. - Data driven decision making - In-depth. Requirements - Salary: $75,900.00 - $141,900.00 - Pay Type: Salaried Benefits - Performance-based incentives - Discretionary bonuses - Health insurance - Tuition reimbursement - Accident and life insurance - Retirement savings plans

Role Description Protecting what matters most to our associates and consumers by securing our sensitive data and critical assets from current and emerging threats. At The Home Depot, Cybersecurity consists of Architecture, Governance, Identity & Access Management, Internal Threat Operations, Issue and Compliance Management, Risk Assessment/Advisory, Security Consulting, Security Operations, Service Optimization and Strategic Planning. Cybersecurity Engineer utilizes business knowledge and technical experience of cybersecurity to provide a secure environment for the business. Key Responsibilities - 100% Deliver Execution & Problem Solving - Troubleshoot and quickly resolve escalated incidents - Investigate and recommend corrective actions related to incidents - Collaborate with Enterprise Technology to configure and integrate cybersecurity systems and services that mitigate risk - Design, build, configure, maintain and monitor cybersecurity threat defense capabilities and user access management Direct Manager/Direct Reports - This Position typically reports to Manager or Sr. Manager - This Position has 0 Direct Reports Travel Requirements - No travel required. Physical Requirements - Most of the time is spent sitting in a comfortable position and there is frequent opportunity to move about. - On rare occasions there may be a need to move or lift light articles. Working Conditions - Located in a comfortable indoor area. - Any unpleasant conditions would be infrequent and not objectionable. Qualifications - Must be eighteen years of age or older. - Must be legally permitted to work in the United States. Preferred Qualifications - Exposure to scripting, automation, or data analysis (e.g., Python, SQL) - Familiarity with Linux or Windows system administration concepts, CI/CD - Internship or academic experience in cybersecurity, IT operations, or related fields. - Experience in writing custom/secure code. - Knowledge of automation, GOLang, Java and rust programming - AI experience or exposure to building AI project (deployments) - Bachelor’s degree in Cybersecurity, Information Technology, or equivalent practical experience. - Foundational understanding of cybersecurity concepts, including vulnerabilities, threats, and basic risk principles. - Basic familiarity with enterprise infrastructure concepts (servers, networking, and operating systems). - Introductory knowledge of cloud computing models (IaaS, PaaS, SaaS) is preferred. Minimum Education - The knowledge, skills and abilities typically acquired through the completion of a high school diploma and/or GED. Preferred Education - No additional education Minimum Years of Work Experience - 0 Preferred Years of Work Experience - No additional years of experience Minimum Leadership Experience - None Preferred Leadership Experience - None Certifications - None Competencies - Action Oriented - Collaborates - Communicates Effectively - Customer Focus - Drives Results Salary Information The pay range for this position is between $50,000.00 - $130,000.00 for California, Colorado, Connecticut, Rhode Island, Nevada, New York City, Ithaca (NY), Westchester County (NY), and Washington residents.