Senior Offensive Security Engineer
Klarna
- Milano
- Tempo indeterminato
- Full time
- Break all the things
- Conduct white-box and black-box penetration testing against internal and public-facing applications and assets
- Manage, triage, and investigate Bug Bounty submissions and external pentest findings
- Perform variant analysis on issues discovered through all channels
- Research and perform security analyses on Klarna's 3rd-party solutions
- Develop tooling to support reconnaissance, automation, and metrics collection
- Provide expert guidance to developers, other product security teams, and the SOC in investigating issues
- Spread awareness of offensive security practices via demos, workshops, and training
- Assess the security of our tech stack through whatever means are best suited
- Define what we focus on to provide the most value
- Help further mature Klarna's security program
- Strong experience with penetration testing and other technical security assessments
- Experience identifying security issues in code, particularly within Java and
- Experience with cloud environments, particularly AWS and modern micro-service design principles
- Comfortable communicating findings clearly and effectively, with concrete remediation recommendations beyond simple issue reporting
- Comfortable scripting and contributing to larger projects in Python
- Able to take the initiative and be comfortable taking on projects that contribute to the larger security culture and posture at Klarna
- Industry recognized certifications, e.g., OSCP, OSWE, CREST, GIAC, AWS, et. al
- CTF Participation and active contributions to the cybersecurity community
- A role where you can make an impact from day one, with the opportunity to see the immediate effects of your work.
- Collaboration within a diverse team that values innovation and creativity.
- Culture - You'll have an opportunity to work with people from 90+ different countries in our English-speaking offices in Milan city center
- A challenging scope with the opportunity to work with latest technologies