Security Engineer

Super Payments

Our mission is to use data and AI to make payments free for businesses so that everyone wins. By removing payment fees and passing savings back to customers we are disrupting the payments industry while helping businesses increase sales and loyalty.

With Buy Now Pay Later (BNPL) free for merchants and 0% card payment processing Super gives businesses a powerful way to reduce costs grow sales and reward customers.

Already trusted by thousands of businesses and more than 4 million customers Super is growing fast supported by leading investors including Accel Union Square Ventures and LocalGlobe and led by Samir Desai founder and former CEO of Funding Circle.

Our Values

• Customer obsessed: We only succeed when our customers do.
• Move fast: Build test and improve quickly. Progress matters more than perfection.
• Own it: Be accountable solve problems and make it happen.
• Be open: Act with honesty and respect. Transparency builds trust.
• Win together: Collaboration beats ego every time.

Our Technology

We leverage the latest tools and technologies to create a seamless customer-centric digital experience. Our core stack is built around TypeScript and NestJS with a front-end powered by React. We deploy using AWS cloud services and Kubernetes ensuring scalability and resilience. Infrastructure as Code is fundamental to our approach and we use Terraform to manage our cloud resources.

Our architecture is cloud-native event-driven and distributed built on Amazon EventBridge and SQS with services exposed via REST.

We are driven by data science machine learning and analytics using multi-variant testing to personalise user experiences across every digital channel.

However its not just about the technology. We are passionate about continuous delivery automation and rapid iteration. Our deployment pipeline is fully automated covering everything from branching building testing and shipping to monitoring and alertingallowing us to focus on delivering value to our customers.

Technology is at the heart of our business and we value diverse perspectives. Bring your ideas experience and problem-solving mindsetwell navigate obstacles together.

Technology:

• Platforms: Kubernetes (EKS) with Istio Service Mesh
• Security & Monitoring: Datadog CSM Cloudflare WAF CrowdStrike BitDefender Okta Hashicorp Vault
• Databases: PostgreSQL (Aurora)
• IaC: Terraform via Atlantis
• CI/CD: Github Flux Helm

What youll be doing:

• Working within the Platform team hardening AWS and Kubernetes perimeters.
• Running vulnerability management across our AWS and Kubernetes estate and setting the SLAs and processes that keep us on top of it.
• Building and tuning security detections and writing the runbooks that make security alerts actionable on-call.
• Coordinating external penetration tests and driving remediation of findings to closure.
• Owning identity and secrets across Okta Vault and AWS IAM including SSO/SCIM rollouts and access reviews.
• Owning our InfoSec/PCI DSS programme end-to-end quarterly reviews significant change documentation audit prep and working directly with our QSA and other partners.

Wed love to hear from you if you have the following:

• Strong AWS security skills (IAM SCPs VPC EKS ECR GuardDuty KMS) and comfort writing and reviewing Terraform yourself.
• Practical experience with at least three of: Datadog (ideally CSM) Cloudflare WAF Hashicorp Vault Okta Kubernetes security CrowdStrike or equivalent EDR.
• A track record of coordinating external penetration tests scoping enablement and remediation follow-through.
• A bias for automating compliance toil particularly evidence-gathering for recurring reviews and audits.
• The ability to write runbooks an on-call engineer can actually follow at 03:00.
• Hands-on experience with PCI DSS v4.0 controls in a payments or financial services environment is a plus
• Are comfortable working in a fast-paced evolving start-up environment.
• Can work independently tackling ambiguous challenges and driving solutions forward.

*The stated experience and background is a guide and does not preclude applications from candidates with more or less experience provided the requisite skills can be demonstrated.

Our Benefits - heres a few and more to come .

• Tax advantage Share Options
• Flexible working model
• Work from home set up
• Learning & Development opportunities
• Contributory Pension Scheme
• Team lunch and social evenings
• Your birthday off plus one Revival day

If you are excited about sharing the adventure joining a growing team with big ambitions and you are really great at what you do then apply now!

Super Payments is an equal opportunity employer embracing diversity in all its forms and fostering an inclusive environment. The company will not unlawfully discriminate on grounds of gender sexual orientation marital or civil partner status gender reassignment race religion or belief colour nationality ethnic or national origin disability or age neurodiversity status pregnancy or trade union membership.

Please let us know if you require any reasonable adjustments at any point during the application and/or recruitment process.