Security Analyst

Veho

Veho

IT

Bogotá, Bogota, Colombia

Posted on Apr 25, 2026
Security Analyst
Hybrid, Bogotá, Colombia
Information Technology
In office
Full-time

About Veho

Veho’s mission is to power the future of commerce by making shopping, shipping and returns seamless for everyone.
We are building a modern, end-to-end logistics infrastructure designed entirely for the ever-evolving needs of ecommerce brands and everyday consumers.
Powered by next-generation technology and a vertically integrated supply chain, Veho gives brands and their customers unprecedented control over their deliveries and removes the pain from the ecommerce post-purchase experience. We make delivery the ‘extension of the brand’ and leverage it to create deeper loyalty and trust between brands and their customers, driving customer retention and lifetime value. Our rapidly growing client list includes leading consumer brands like Hello Fresh, Zara, Macy’s, Sephora, and more.
To truly build an iconic company, we strongly believe that our people and values must be aligned with our mission. As such, we take pride in our championship team, merit-based culture. We seek team players who want to compete, win, make an impact and build a legacy, and we reward performance and impact players with generous equity and incredible career growth opportunities.
About the Role
The Information Security Team at Veho is seeking a highly motivated and detail-oriented Security Analyst to join our dynamic team. The ideal candidate will have a strong analytical mindset, excellent communication skills, and a passion for cybersecurity. This role is responsible for performing and evaluating vulnerability scanning, reporting detection results, maintaining scanning systems and procedures; and identifying and mitigating threats to the enterprise network, technical assets, applications, and enterprise users. This teammate will work independently with general supervision and exercise judgment within defined guidelines to take appropriate action. This role will report directly to the Sr. Director of Information Security.
Key Responsibilities:
  • Analyze network traffic, intrusion attempts, activity logs, and system alerts for trends, anomalies, and potential security breaches. Perform initial triage and analysis to identify and classify the type and severity of security events.
  • Conduct or coordinate vulnerability scans, and penetration tests to expose known and undocumented vulnerabilities in various information systems, document findings, and recommend risk mitigation strategies.
  • Execute basic incident response protocols, including containment, eradication, and recovery steps as per established playbooks.
  • Contribute to security compliance efforts such as ISO27001 certification, privacy and data security law compliance by providing the necessary capabilities and artifacts.
  • Assist with conducting risk assessments and developing risk mitigation strategies including working with development teams to integrate risk management practices into the software development lifecycle.
  • Review Security Researcher findings through the company’s Vulnerability Disclosure program and pursue remediation when issues are validated.
  • Maintain up-to-date knowledge of emerging threats and attack vectors
What you bring:
  • 1-5 years experience
  • Bachelor's degree in computer science, information security, or a related field, or relevant work experience in lieu of a degree.
Working knowledge of:
    • Log analysis and familiarity with security information and event management (SIEM) systems
    • Networking and web-related protocols (e.g. TCP/IP, DNS, TLS, IPSEC, HTTP, HTTPS, routing protocols)
    • Incident response procedures and best practices
    • Common attack patterns and exploitation techniques
    • Web application security, secure coding practices, and OWASP Top 10
    • Security analysis techniques such as threat modeling and attack graphs
    • GitHub operations (e.g., cloning, branching, merging, pull requests, issues)
    • Common software development practices and procedures (version control, testing, patching, CI/CD)
Familiarity with:
    • Cloud infrastructure (AWS, Google Cloud, Azure) along with best practices and security features
    • Security tools such as endpoint detection and response (EDR) and vulnerability scanners
    • Security frameworks such as ISO27001
Preferred Qualifications:
  • Security certifications (CISSP, GCIA, GCIH, GCFA, GCFE, etc.)
  • Ability to prioritize multiple tasks/initiatives at once and adjust on the fly
  • Comfortable with ambiguity and enjoy providing structure to solve problems
  • Self-motivated and comfortable in a remote environment
  • Experience with security automation
  • Experience in scripting (Bash, Python, etc.)
Veho is a growth company that looks for team members to grow with it. No matter the location, or the role, every Veho teammate shares one galvanizing mission: driving commerce forward with a customer-centric delivery and returns experience that’s built for the modern era. We are deeply value-driven (Team Up, Drive Impact, Take Ownership, Solve Bigger, Obsess Over Experience, Make Today Count) and care tremendously about investing in our high-performers.
Join us in building the future of ecommerce logistics and in doing the work of our lifetime!
(Veho is unable to provide sponsorship at this time.)
All California applicants please reference our California Applicant Privacy Notice located here.
Ready to apply?
Powered by
First name *
Last name *
Email *
LinkedIn URL
Phone number *
Location *
Resume *
Click to upload or drag and drop here
Do you have a family member/spouse that works or has worked at Veho?
Are you at least 18 years of age?
Are you available to work a flexible schedule that can include night, weekend and holiday shifts? *
Are you willing to undergo a background check? *
Voluntary Self-Identification
To comply with government reporting requirements, we invite candidates to participate in the self-identification survey below. Your completion of this form is entirely optional, and your decision will neither influence the hiring process nor any subsequent stages. Any information you choose to share will be kept confidential and stored in a secure file. As outlined in our Equal Employment Opportunity policy, we uphold a commitment to non-discrimination based on any protected group status specified in applicable laws.
Gender
Race
Race and ethnicity descriptions
Voluntary Self-Identification of Veteran Status
VEVRAA requires Government contractors to take affirmative action to employ and advance in employment protected veterans. To help us measure the effectiveness of our outreach and recruitment efforts of veterans, we are asking you to tell us if you are a veteran covered by VEVRAA. If you believe that you belong to any of the following categories of protected veterans, please indicate by making the appropriate selection.
Veteran status descriptions
Disabled veteran
A veteran who served on active duty in the U.S. military and is entitled to disability compensation (or who but for the receipt of military retired pay would be entitled to disability compensation) under laws administered by the Secretary of Veterans Affairs, or was discharged or released from active duty because of a service-connected disability
Recently separated veteran
A veteran separated during the three-year period beginning on the date of the veteran's discharge or release from active duty in the U.S military, ground, naval, or air service
Active duty wartime or campaign badge veteran
A veteran who served on active duty in the U.S. military during a war, or in a campaign or expedition for which a campaign badge was authorized under the laws administered by the Department of Defense
Armed Forces service medal veteran
A veteran who, while serving on active duty in the U.S. military ground, naval, or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985 (61 Fed. Reg. 1209).
Veteran status
Req ID: R762
See more open positions at Veho