AppSec Jobs
← Back to all jobs

Banco de Crédito BCP

Software Security Engineer

Lima, PeruWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Banco de Crédito BCP

Banco de Crédito BCP (BCP) is the leading bank in Peru, with a rich history that began as Banco Italiano. The bank has a strong regional presence, having acquired Banco Popular de Bolivia, and operates an extensive network of 375 agencies, over 1,800 ATMs, and more than 5,600 Agentes BCP throughout Peru. BCP is dedicated to being a supportive financial partner for its clients, employees, and the broader community. The bank offers a variety of banking products and services, including credit and debit cards tailored for different needs, a robust digital banking platform, and financial education resources. BCP emphasizes accessibility and financial inclusion, providing tools for credit building and responsible financial management. Its commitment to innovation and customer service aims to create a positive experience for all users, from students to investors.

Industry

banking

Employees

26,000

995 engineers

Revenue

$4.3B

Website

Visit →

Security at Banco de Crédito BCP

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • Banco de Crédito BCP's AppSec philosophy is centered on a DevSecOps model that prioritizes automation and the integration of security into the development lifecycle.
  • A primary focus is reshaping secrets management to move from manual, time-consuming processes to near-instant validation.
  • The team also emphasizes the adoption of SRE principles and Generative AI to drive security innovation.

Security Team

  • The AppSec team at BCP is organized into a 'Tribe' structure.
  • Key leaders include Erika León-Ravinez, who serves as the Tribe Leader for DevSecOps, and Max Alejandro Gómez-Sánchez Vergaray, the Defensive Cybersecurity Manager.
  • The team is active in the broader security community, contributing to projects like OWASP Cornucopia.

Key Initiatives

  • BCP hosts several recurring initiatives including 'DevSecOps Fest BCP' (now in its 4th year as of 2023) and 'BCP DevSecOps Week'.
  • These events focus on sharing experiences and challenges in the field.
  • The team is also actively pursuing the integration of Generative AI into their security workflows ('Nuestro Camino a la GenAI en BCP').

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.