Security Engineer - Penetration Tester
Who we are
Klarna’s mission is to free people from all the meaningless time spent managing money and purchases, so they can do more of what they love. Every day at Klarna we help consumers, merchants, and partners to explore just how smoooth the modern purchase experience can be. Our position at the crossroads of payments, consumer financing, ecommerce and banking means we are uniquely positioned to do this. There is no label for what we do.
Klarna was born in Stockholm in 2005 and today has 2500 employees working across Europe and the US. We currently serve 60 million consumers, work together with 130,000 merchants and process more than a million payment transactions a day. We are growing at 40% year on year and our investors include Visa, Atomico, Sequoia Capital, Permira and Bestseller group/ Anders Holsch Povlsen. We have strong partnerships with some of the world’s leading brands, such as ASOS, IKEA, Adidas, Zara, Lufthansa and Spotify.
To find out more about what it's like to work at Klarna: klarna.com/careers
Security lies at the core of all the things we do at Klarna and we're looking for people passionate about taking our security operations in a highly dynamic environment to the next level. In the Vulnerability Management team, we're building tools and mechanisms for giving us a continuous real-time view of identified security issues. We constantly challenge our ways of working to make sure we're keeping up with Klarna's fast-paced development progress. In order to achieve that, we're focusing heavily on automating all things that can be automated.
Klarna is building a lot of things at a fast pace and our developers are constantly pushing the boundaries with the latest technologies. We see an ever growing need to ensure the solutions we build are secure, and are therefore now looking for senior penetration testers with solid experience with today’s common technologies as well as the ability and passion to quickly learn how to break tomorrow’s technologies.
Equally as important to be able to break things is to be able to communicate to developers and other stakeholders how you broke it, why you were able to break it and how to make sure it’s not possible to break again. We therefore expect you to have excellent verbal and written communication skills and the ability to help developers do the right thing by explaining issues from their viewpoint. If you have previous software development experience that’s a huge plus. If you have previous experience with “shifting left” by embedding with software development teams and help them build security into solutions early on in the development process that’s also a huge plus.
Our team is looking to make sure our findings from security assessments can benefit all of Klarna, and we therefore share our time between performing assessments and building solutions that enable us to automatically catch issues in the build process.
If you feel at home when taking on the challenge of breaking solutions using the latest technologies in cloud environments, this is a position for you. You will get a lot of opportunities to shape how we best secure our environments on all levels of our tech stack today and in the future - networks, systems, containers, orchestration layers, CI/CD pipelines, and more.
Get in touch with us if you would enjoy:
Assessing the security of our tech stack through whatever means are best suited
Building tools to handle everything that’s better suited for automating than doing manually
Working with engineering teams to drive security improvements
Taking an active role in architectural decisions
Having fun and sharing your knowledge and expertise while doing so
It would be great if you have some of the following:
Experience within penetration testing and other forms of technical security assessments
Experience with building your own tools, preferably in Python or NodeJS
Experience and understanding of modern tech stacks and dynamic environments - containers, CI/CD pipelines, cloud environments
A pragmatic approach to solving security issues in ways that achieve the best effect within the organization
What we offer:
30 days of annual leave every year
Generous occupational pension and insurance plans
Flexible work schedule
International working environment in central Berlin
Learning and development focused environment with an emphasis on knowledge sharing, training and regular internal technical talks
This is an exciting time to join our Vulnerability Management team as we are growing and exploring new areas within the security domain.
We can offer you an international working environment filled with smart and ambitious colleagues. We know that diverse teams are strong teams, so we welcome those from different backgrounds and experiences. As part of one of Europe’s fastest growing companies, you'll help play an important role in taking Klarna to the next level.