ICT Risk & Security Engineer

Klarna makes shopping smoooth. And we do it with flair because shopping is fun. Every day, we help customers, businesses, and partners explore just how smoooth the modern shopping experience can be. 

It means we’re constantly changing the game. Always trying out new things. And we encourage our people to do the same. To grow. To develop. Because we don’t believe roles have to stay fixed. Instead we inspire our people to take an irregular career path. As a company of 350 dynamic start-ups, our whole business is built for it. So once you’re in, there’s no telling what will happen next.

Engineering at Klarna is an inspired, customer focused community, dedicated to crafting solutions that redefine our industry. Working in small, highly collaborative Agile teams, you and your team will have a clear mission and ownership of an important outcome that supports Klarna and our customers. At Klarna we optimise for quality, flow, fast feedback, focussing on end-to-end ownership, continuous improvement, testing, monitoring and experimentation. We aim for teams that are inclusive, helpful, and have a strong sense of ownership for the things they build.

Our engineers make some of the most significant decisions for the company and we are looking for bold, open and curious developers. As a Klarnaut, you’ll be inspired to contribute to the growth of Europe’s most highly valued fintech and your work will reach millions of users.

It’s our vision to build a fully quantified ICT & Security Risk management framework that is able to identify and predict ICT and security risks. As a member of the ICT and Security Risk team, you will analyse the scope and impact of risk-related topics such as breaches of confidentiality, system, and data integrity failures, system dependencies, and inappropriateness or unavailability of systems and data. 

As an ICT Risk & Security Engineer, you are always skeptical of any model, and you use your in-depth, first-hand ICT knowledge to check abstract models against reality. It’s also your passionate wish to improve quantitative risk models with objective measures of risks so that it can have a maximum business impact, eg. by creating early warning systems.

What you’ll get to do

  • Contribute to systematically identifying all ICT related risks in our organisation
  • Define processes to identify, manage, monitor, and report ICT risks within our Risk Management framework
  • Perform ad-hoc and periodic risk assessments and define meaningful KPIs for ICT Risk management
  • Assist in aligning the ICT Risk management framework with operative Risk 
  • Help validate quantitative models and run simulations with real-world ICT data
  • Challenge existing methodologies while maintaining our high standards for compliance and governance requirements
  • Think out of the box, and help us formulate ideas to improve how we measure the effectiveness of our ICT and security risk management framework
  • Analyse whether parts that have been measured so far are meaningful from an ICT perspective
  • Design Information Security Dashboards that provide our management with an overview of the ICT Risk and security posture within the organization
  • Ensure ICT security governance is maintained in an agile environmentIdentify the aspects of our risk management framework that do not work or align with ICT-realities, and come up with ideas for improvement. You will also identify the things that work well, but are underutilized and optimize them

Some of the technologies you’ll get to work with

  • Python, R, Julia
  • Monte Carlo Simulations
  • AWS/Azure

  • We also believe in contributing back to the open-source community. You can find some of our work here https://github.com/klarna.

To succeed in this role, we think you should have

  • At least 3 years experience in information technology, preferably in information security
  • Experience with data processing (using python, R, Julia or similar)
  • Experience with virtualization/cloud infrastructures
  • Experience with SIEM/ ISMSExperience with monitoring and logging tools like Splunk or similar
  • A solid understanding of Risk management frameworks and experience with Risk management process improvements
  • Knowledge of security standards such as ISO, ITIL or ISAE
  • Experience with Lean and Agile methodologies
  • Strong research interest

What we can offer you

  • Culture - You'll have an opportunity to work with talented people from 90+ different countries in our brand new English speaking offices in Berlin city center.
  • Learning - We have a learning and development focused environment with an emphasis on knowledge sharing, training, and regular internal technical talks.
  • Compensation - You’ll receive an attractive salary, pension, and insurance plans, plus we offer all of our employees an opportunity to invest in an RSU program and own a stake of the company. You’ll also receive 30 days annual leave and since we recognise that life is about more than work, we also offer benefits for gym memberships and discounted lunch through Smunch. We also support our working parents, so you don’t have to choose between work and family. 
  • Relocation - We can offer relocation support to Berlin.
How to apply: please send us your CV or Linkedin profile in English

About Klarna

Klarna was founded in Stockholm, Sweden in 2005. Since then, we’ve changed the banking industry forever. And now we’re creating the world’s smooothest shopping experience. We serve 80 million consumers worldwide, and partner with 190,000 merchants – with a new merchant joining us every 8 minutes. Including some of the world’s leading brands, such as H&M, ASOS, IKEA, Adidas, Samsung and Lufthansa. Our offices are spread over 18 different markets, hosted by +3000 people from 90 nationalities.