AboutUs
At Klarna we are on a missionto reshape the shopping experience. We believe in deliveringservices that are not just innovative but also straightforward andsafe.
Our engineering teams are at the heart of our mission drivingthe changes that impact our customersdirectly.
As a Senior Offensive Security Engineerat Klarna you will be at the forefront of safeguarding our digitalinfrastructure and customer data.
This role demands a blend ofhacking skills creativity and a deep understanding of cyberthreats. You will simulate sophisticated cyber attacks to identifyvulnerabilities ensuring Klarnas resilience against realworldthreats.
Collaborating with crossfunctional teams you will provideactionable insights to fortify our securityposture.
What You WillDo
- Break all thethings
- Conduct whitebox and blackboxpenetration testing against internal and publicfacing applicationsand assets
- Manage triage and investigate BugBounty submissions and external pentestfindings
- Perform variant analysis on issuesdiscovered through all channels
- Research andperform security analyses on Klarnas 3rdpartysolutions
- Develop tooling to supportreconnaissance automation and metricscollection
- Provide expert guidance todevelopers other product security teams and the SOC ininvestigating issues
- Spread awareness ofoffensive security practices via demos workshops andtraining
- Assess the security of our tech stackthrough whatever means are best suited
- Definewhat we focus on to provide the most value
- Helpfurther mature Klarnas securityprogram
To succeed inthis role we think you shouldhave / be :
- Strongexperience with penetration testing and other technical securityassessments
- Experience identifying securityissues in code particularly within Java andNode.js
- Experience with cloud environmentsparticularly AWS and modern microservice designprinciples
- Comfortable communicating findingsclearly and effectively with concrete remediation recommendationsbeyond simple issue reporting
- Comfortablescripting and contributing to larger projects inPython
- Able to take the initiative and becomfortable taking on projects that contribute to the largersecurity culture and posture at Klarna
- Industryrecognized certifications e.g. OSCP OSWE CREST GIAC AWS et.al
- CTF Participation and active contributionsto the cybersecuritycommunity
What weoffer :
- A role where youcan make an impact from day one with the opportunity to see theimmediate effects of your work.
- Collaborationwithin a diverse team that values innovation and creativity.
- Culture Youll have an opportunity to work withpeople from 90 different countries in our Englishspeaking officesin Milan city center
- A challenging scope withthe opportunity to work with latesttechnologies