Apply

🍪 Privacy Notice This website uses cookies to improve your web experience. By using the site, you agree to the use of cookies. dismiss Security Engineer Stockholm, SwedenProduct & Tech - Europe – Tech Foundation - Europe /Full-Time /Hybrid APPLY FOR THIS JOB WHO WE ARE At Trustly, we're building a smarter, faster, and more secure financial future by revolutionizing the world of payments. As a global leader in Open Banking Payments, we are establishing Pay by Bank as the new standard at checkout, providing unparalleled freedom, speed, and ease to millions of consumers and merchants worldwide. Our Ambition: To build the world’s most disruptive payment network and redefine what the payment experience should feel like. Trustly is a global team of innovators, collaborators, and doers.  If you are driven by a strong sense of purpose and thrive in a dynamic, entrepreneurial, and high-growth environment, join us and be part of a team that’s transforming the way the world pays. ABOUT THE TEAM As part of fulfilling the objective of becoming the leading global online banking payments provider, we are strengthening our capability in the information and cyber security area. Currently, we are restructuring our internal setup within the security area allowing us to scale and grow our teams. To get us going we are now looking for additional Security Engineers to join the Security and Compliance team focusing on our product security in Europe. ABOUT THE ROLE As a Security Engineer at Trustly, you will be part of a team of security professionals ensuring security lies in the core of everything we build and operate. We combine our expertise in providing security services to the organization with automating security controls wherever and whenever possible. As our team is undergoing an expansive phase, you will have the opportunity to shape our direction and methodologies. Your contributions will be important in refining our interactions with merchants, allowing you to leave a large impact on our operational security framework. What you'll do Own and continuously improve our vulnerability management program, ensuring full coverage and accurate exposure visibility across all assets Build and maintain automation around security tooling to ensure data quality, consistency, and actionable insights Perform security assessments across the SDLC: design reviews, threat modeling, code reviews, and dynamic testing, working closely with engineering teams Integrate and enforce security controls within CI/CD pipelines (SAST, DAST, secrets detection, dependency scanning), with a strong focus on developer experience Conduct internal offensive security activities (penetration testing, red teaming, exploitation) to validate real-world risk and identify control gaps Translate vulnerabilities into real business risk by validating exploitability and prioritizing remediation based on impact Contribute to incident response and security investigations, including root cause analysis and improvement of detection and response capabilities Actively participate in improving our security posture by challenging assumptions, refining detection logic, and improving how we measure exposure Collaborate with infrastructure and platform teams (AWS, Kubernetes, IAM) to ensure secure-by-design architectures Contribute to threat intelligence efforts by identifying relevant threats and mapping them to our internal stack and exposure Support the evolution of our security practices, tooling, and processes as we continue to scale our business and security capabilities Who you are You have hands-on experience in cybersecurity engineering, application security, or infrastructure security Strong understanding of modern cloud environments (preferably AWS), including networking, IAM, and containerized workloads Experience with vulnerability management and security tooling, with a good understanding of asset exposure and data accuracy Familiar with integrating security ... (truncated, view full listing at source)