Senior Staff Security Engineer

PPRO is a fintech company that provides digital payment solutions to businesses and banks so that they can scale their local payment services through one connection. Stripe and PayPal are just some of the names that work with PPRO to boost their conversions and eliminate the complexities of local payments.

Since 2006, PPRO has fostered an open working environment where every idea is valued, and continuous improvement is encouraged. Our diverse global team, representing over 50 nationalities across 11 international locations, is united by a single goal to deliver the best products and services to our partners and customers.

Join us and help shape the future of payments.

The Purpose:

At PPRO, Senior Staff Engineers (m/w/x) make significant decisions for the company. As Senior Security Engineer, you’ll play a pivotal role in driving PPRO’s mission to provide robust, secure, scalable and resilient systems. You’ll have a significant impact on our technical strategies, our system landscape, and on our culture, spirit and ways of working.

This role gives you the opportunity to showcase your deep, all-round security skills, combined with robust software engineering expertise. You’ll solve complex technical problems relating to security, compliance and resilience, participating in decisions on architecture and technical direction, supporting and mentoring other teams to embed a “secure by design” philosophy and working alongside engineers in the code.

You’ll be adept at switching between high-level strategic thinking and hands-on coding. You’ll develop secure solution architectures and build Security as Code solutions that can be leveraged by developers, ensuring seamless, consistent controls which enable robust, high-velocity delivery. You’ll conduct threat modelling, designing and building repeatable solutions and patterns to address key findings. You’ll provide application and product security support, interfacing across Engineering and Product teams. If you have an interest in how security and counter-fraud controls can work together to better support robust financial services and safeguard customers, this will be a great opportunity for you to have a positive impact at scale across the payments ecosystem.

What you’ll do:

• Design and deliver strategic, cross-team/cross-domain security and compliance projects, architectures and initiatives.
• Build consumable Security as Code artefacts and patterns to allow developers seamlessly integrate security and reduce friction.
• Collaborate with Product and Engineering teams to ensure security principles, practices and controls are embedded into the software development lifecycle and into PPRO’s software development culture, agile methodologies and mob/pair programming approaches.
• Establish company-wide security standards and share best practices.
• Conduct threat modelling exercises to identify and mitigate potential security risks; maintain threat models for critical systems and applications; provide guidance and support on threat mitigation strategies to development and operations teams.
• Provide expert advice and support on product and application security issues.
• Drive strategic security assessments and penetration testing of applications.
• Identify emerging security threats and trends, and develop proactive measures to address them.
• Collaborate and grow in a dynamic and autonomous environment, providing cross-functional support in a lean, agile environment.
• Evaluate and recommend the latest technologies to solve security problems and meet customers at significant scale and velocity.
• Drive innovation and efficiencies, providing thought leadership on emerging best practices that can support PPRO as market leaders.

What we look for in you:

• Results-oriented, highly collaborative, pragmatic and proactive, and with a continuous improvement mindset.

• Expert experience in security architecture and application/product security, with a strong background in software development.

• Experience designing and building scalable security controls, architecture and services, taking strategic decisions and having a wide impact

• Strong expertise in cloud (preferably AWS, and GCP) and container security (Kubernetes, Docker)

• Deep understanding of designing and building DevSecOps and CI/CD security controls, in line with best practices.

• Great problem solving abilities

• Developer mindset and empathetic approach to find innovative “win-win” solutions

• Security qualifications a bonus

• Excellent communication and collaboration skills and fluent proficient in English

If you’re passionate about security and eager to make a significant impact in a fast-paced environment, we’d love to hear from you!

What's in it for you?:

Hybrid working - We offer a hybrid structure with a 3 days / week on site expectation, so you can strike the balance between office and home working. In addition to our 30-day holiday allowance, we also provide a work from abroad policy, enabling employees to work remotely for up to another 30 days per year.

Insurance - Because better safe than sorry - we want our employees to benefit from various insurances including accident insurance, disability insurance, direct insurance (bAV) and travel insurance.

Gym membership - PPRO helps contribute towards the costs of your gym membership, supporting your physical fitness journey while easing the burden on your wallet

Professional and personal development - We provide leadership cafes, on-the-job training, and access to LinkedIn learning to help you gain knowledge beyond your role. We also offer German language courses to our non native speakers employees.

Mental Health Platform - We’ve teamed up with a top well-being platform to provide one-on-one therapy, chat therapy, therapist-led courses, guided meditations, and more.

Our Principles:

We get things done: We are courageous; we take ownership, make decisions and get things done.

We act with trust and integrity: We listen first and challenge respectfully. We seek out and leverage diverse perspectives. We welcome and offer honest and open feedback, always assuming positive intent

We put the customer first: We are laser focused on delivering outstanding outcomes for our customers. We put the customer at the heart of what we do.

We make things better: We boldly explore new ideas and have an unwavering commitment to continuous improvement.

We work as a team: We collaborate closely and value team success over individual achievement.