At a Glance
- Tasks: Secure AWS and Kubernetes environments while managing vulnerabilities and driving compliance.
- Company: Join Super Payments, a fast-growing fintech disrupting the payments industry.
- Benefits: Enjoy flexible working, share options, team lunches, and comprehensive health insurance.
- Other info: Dynamic start-up culture with opportunities for personal and professional growth.
- Why this job: Be part of a mission to make payments free for businesses and enhance customer loyalty.
- Qualifications: Strong AWS security skills and experience with security tools like Datadog and Cloudflare.
The predicted salary is between 60000 - 80000 € per year.
Super Payments is on a mission to use data and AI to make payments free for businesses, disrupting the payments industry while helping businesses increase sales and loyalty. With Buy Now, Pay Later (BNPL) free for merchants and 0% card payment processing, Super provides businesses a powerful way to reduce costs, grow sales, and reward customers.
Our Values:
- Customer obsessed: We only succeed when our customers do.
- Move fast: Build, test and improve quickly. Progress matters more than perfection.
- Own it: Be accountable, solve problems, and make it happen.
- Be open: Act with honesty and respect. Transparency builds trust.
- Win together: Collaboration beats ego every time.
Our Technology:
We leverage the latest tools and technologies to create a seamless, customer-centric digital experience. Our core stack is built around Node.js, TypeScript, and NestJS, with a front-end powered by React. We deploy using AWS cloud services and Kubernetes, ensuring scalability and resilience. Infrastructure as Code is fundamental to our approach, and we use Terraform to manage our cloud resources. Our architecture is cloud-native, event-driven, and distributed, built on Amazon EventBridge and SQS, with services exposed via REST. We are driven by data science, machine learning, and analytics, using multi-variant testing to personalise user experiences across every digital channel.
What you'll be doing:
- Working within the Platform team hardening AWS and Kubernetes perimeters.
- Running vulnerability management across our AWS and Kubernetes estate, and setting the SLAs and processes that keep us on top of it.
- Building and tuning security detections, and writing the runbooks that make security alerts actionable on-call.
- Coordinating external penetration tests and driving remediation of findings to closure.
- Owning identity and secrets across Okta, Vault, and AWS IAM, including SSO/SCIM rollouts and access reviews.
- Owning our InfoSec/PCI DSS programme end-to-end — quarterly reviews, significant change documentation, audit prep, and working directly with our QSA and other partners.
We'd love to hear from you if you have the following:
- Strong AWS security skills (IAM, SCPs, VPC, EKS, ECR, GuardDuty, KMS) and comfort writing and reviewing Terraform yourself.
- Practical experience with at least three of: Datadog (ideally CSM), Cloudflare WAF, Hashicorp Vault, Okta, Kubernetes security, CrowdStrike or equivalent EDR.
- A track record of coordinating external penetration tests — scoping, enablement, and remediation follow-through.
- A bias for automating compliance toil, particularly evidence-gathering for recurring reviews and audits.
- The ability to write runbooks an on-call engineer can actually follow at 03:00.
- Hands-on experience with PCI DSS v4.0 controls in a payments or financial services environment is a plus.
- Comfortable working in a fast-paced, evolving start-up environment.
- Ability to work independently, tackling ambiguous challenges and driving solutions forward.
Our Benefits:
- Tax advantage Share Options
- Flexible working model
- Work from home set up
- Learning & Development opportunities
- Contributory Pension Scheme
- Free Team lunch (Tues & Thurs) and social evenings
- Comprehensive PMI & x4 Life Insurance
- Your birthday off, plus one Revival day
If you are excited about sharing the adventure, joining a growing team with big ambitions and you are really great at what you do, then apply now! Super Payments is an equal opportunity employer, embracing diversity in all its forms and fostering an inclusive environment.
Platform Security Engineer in London employer: Super Payments
Super Payments is an exceptional employer that prioritises a customer-obsessed culture and values collaboration, transparency, and accountability. With a strong focus on employee growth through learning and development opportunities, flexible working arrangements, and a supportive environment, team members are empowered to innovate and drive meaningful change in the payments industry. Located in a fast-paced start-up atmosphere, employees enjoy unique benefits such as tax advantage share options, comprehensive health insurance, and even their birthday off, making it a truly rewarding place to work.
StudySmarter Expert Advice🤫
We think this is how you could land Platform Security Engineer in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with people on LinkedIn. You never know who might have the inside scoop on job openings or can refer you directly.
✨Tip Number 2
Prepare for those interviews! Research the company, understand their tech stack, and be ready to discuss how your skills align with their needs. Practise common interview questions and have your own questions ready to show you're genuinely interested.
✨Tip Number 3
Show off your projects! Whether it's GitHub repos or personal projects, having something tangible to demonstrate your skills can set you apart. Make sure to highlight any relevant experience with AWS, Kubernetes, or security tools.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen. Plus, it shows you’re keen on joining our team at Super Payments, where we’re all about making payments free and easy for businesses.
We think you need these skills to ace Platform Security Engineer in London
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter to highlight your relevant skills and experiences that align with the Platform Security Engineer role. We want to see how your background fits into our mission of disrupting the payments industry!
Showcase Your Technical Skills:Don’t hold back on detailing your AWS security skills and experience with tools like Terraform, Datadog, and Kubernetes. We’re all about leveraging the latest tech, so let us know how you’ve used these in past roles!
Be Clear and Concise:When writing your application, keep it straightforward and to the point. We appreciate clarity, especially when it comes to complex topics like security protocols and compliance. Make it easy for us to see your strengths!
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates from our team. Let’s get started on this adventure together!
How to prepare for a job interview at Super Payments
✨Know Your Tech Stack
Familiarise yourself with the technologies mentioned in the job description, especially AWS, Kubernetes, and Terraform. Be ready to discuss your hands-on experience with these tools and how you've used them to enhance security in previous roles.
✨Showcase Your Problem-Solving Skills
Prepare examples of how you've tackled complex security challenges in the past. Highlight your ability to coordinate external penetration tests and drive remediation efforts, as this aligns perfectly with what they’re looking for.
✨Understand Their Values
Super Payments values collaboration, accountability, and customer obsession. Think of instances where you’ve demonstrated these values in your work. This will show that you not only fit the technical requirements but also their company culture.
✨Prepare Actionable Runbooks
Since writing runbooks is part of the role, come prepared with a sample or two. Discuss how you would create clear, actionable steps for on-call engineers, especially for high-pressure situations like security alerts at odd hours.
