Intermediate Software Engineer - Security

Super.com • Remote • 4d ago

At Super.com [http://Super.com], we’re on a mission to help people save more, earn more, and get more out of life. That goes for both our customers and our team.

For our employees, Super.com [http://Super.com] is more than just a workplace—it’s an opportunity to grow, make an impact, and unlock your full potential. We invest in learning, celebrate bold ideas, and create pathways for career growth.

We move fast, think big, and always put people first. Your career should be as rewarding as the work you do, and at Super.com [http://Super.com], we’re here to make every day Super.

About this role:

In this Security Software Engineer role you will be responsible for authoring, maintaining, and extending software to improve the security of our product. You’ll contribute to our web service code and cloud infrastructure, updating and hardening our products against attacks and implementing secure architecture patterns. You’ll review engineering design docs, operate security tooling, and create automation to improve the velocity of our security operations processes. In this role you will report to our Security Engineering Manager, participate in Scrum agile processes, and play a specialist role among the software engineers at Super.com [http://super.com]. Expect a culture of high autonomy, frequent collaboration, fast pace, and reliance upon your own initiative.

What you'll be working on:

Automate and orchestrate security tooling by writing Python scripts and services
Patch and secure our full-stack web services, applying fixes to identified vulnerabilities and implementing architectural improvements across the full range of Super.com [http://super.com]’s products
Act as a point of contact for reviewing the security, exploitability, and fraud risk of software changes
Contribute a security perspective to major engineering designs and projectsIndependently identify current vulnerabilities within our product, and verify the accuracy and exploitability of detected/submitted vulnerabilities, including by implementing proofs of concept
Operate closely with product engineers, Fraud, DevOps, and other parts of the business as a company technical resource
Participate in our Security Operations process, responding to threat signals and incidents as they arise.

Our Technology:

We use a state of the art architecture powered by Node and Python microservices and React frontend
We use Postgres for storage, Redis for caching, and Snowflake for our data warehouse
We use Gitlab for version control and CI/CD, and our infrastructure is hosted on AWS, making use of Kubernetes, RDS, etc
We invest heavily in monitoring and automated alerting using Datadog
We use Amplitude, Hotjar, and LogRocket for client-side metrics and experimentation
We use Material-UI and maintain our own component library, using Figma for mock-ups
We integrate with a multitude of third-parties to support our compliance, risk, and security policies

Who we're looking for:

3+ years experience professional full-stack software development
1+ year experience working in the security space, or equivalent education / experience
Intermediate Software Engineer level experience with Python and React specifically
Ability to identify vulnerabilities in software. Familiarity with the OWASP top 10, modern security tools, and a proven ability to apply identified vulnerabilities to exploit systems.
Experience working in a fast-paced and technology focussed Agile environment Familiarity with major cloud infrastructure components such as AWS Cloud, Kubernetes, and Cloudflare

Bonus points for:

Proven success finding vulnerabilities in Bug Bounty programs, CTF events, etc
Independent development visible on GitHub of full-stack web applications

\n $89,000 - $137,000 a year As a remote-first organization we use benchmarking data reflective of your geographical areas to ensure our compensation package is competitive based on where you reside. Your TA partner will confirm which range applies to your location as part of the hiring process.

Canada Tier 1: $93,000 - $132,000 CAD

Greater Toronto Area (City of Toronto, York Region, Durham Region, Peel Region, Halton Region
Metro Vancouver (City of Vancouver, North Shore, Burnaby, New Westminster, Tri-Cities, Fraser Valley Edge, South of the Fraser River, and Richmond) Tier 2: $89,000 - $126,000 CAD
All other Regions and Municipalities

USA $94,000 - $137,000 USD \n

We’ve got you covered

We are remote first: You have the flexibility to work from around the world and the hours that make sense for you– so that you can do your best work while living life on your own terms
Other perks include: unlimited PTO, recharge days, travel discounts on SuperTravel, Weekly UberEats credit, annual company offsites
We welcome new family additions with generous parental leave and a flexible return-to-work plan
Competitive salary packages, equity options, great benefits from day one, wellness budgets, as well as personal and team-level development budgets
This is just scratching the surface– see our careers site for a more detailed overview of our perks & benefits

Super.com [http://Super.com] is an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Accommodations are available on request for candidates taking part in all aspects of the selection process. If needed, please notify our Talent Acquisition Partner.