About Us
At Klarna we are on a mission to reshape the shopping experience. We believe in delivering services that are not just innovative but also straightforward and safe. Our engineering teams are at the heart of our mission driving the changes that impact our customers directly.
As a Senior Offensive Security Engineer at Klarna you will be at the forefront of safeguarding our digital infrastructure and customer data. This role demands a blend of hacking skills creativity and a deep understanding of cyber threats. You will simulate sophisticated cyber attacks to identify vulnerabilities ensuring Klarnas resilience against realworld threats. Collaborating with crossfunctional teams you will provide actionable insights to fortify our security posture.
What You Will Do
- Break all the things
- Conduct whitebox and blackbox penetration testing against internal and publicfacing applications and assets
- Manage triage and investigate Bug Bounty submissions and external pentest findings
- Perform variant analysis on issues discovered through all channels
- Research and perform security analyses on Klarnas 3rdparty solutions
- Develop tooling to support reconnaissance automation and metrics collection
- Provide expert guidance to developers other product security teams and the SOC in investigating issues
- Spread awareness of offensive security practices via demos workshops and training
- Assess the security of our tech stack through whatever means are best suited
- Define what we focus on to provide the most value
- Help further mature Klarnas security program
To succeed in this role we think you should have/be:
- Strong experience with penetration testing and other technical security assessments
- Experience identifying security issues in code particularly within Java and Node.js
- Experience with cloud environments particularly AWS and modern microservice design principles
- Comfortable communicating findings clearly and effectively with concrete remediation recommendations beyond simple issue reporting
- Comfortable scripting and contributing to larger projects in Python
- Able to take the initiative and be comfortable taking on projects that contribute to the larger security culture and posture at Klarna
- Industry recognized certifications e.g. OSCP OSWE CREST GIAC AWS et. al
- CTF Participation and active contributions to the cybersecurity community
What we offer:
- A role where you can make an impact from day one with the opportunity to see the immediate effects of your work.
- Collaboration within a diverse team that values innovation and creativity.
- Culture Youll have an opportunity to work with people from 90 different countries in our Englishspeaking offices in Milan city center
- A challenging scope with the opportunity to work with latest technologies