Intermediate Software Engineer - Security
Job Summary
Job Description
Super.com is seeking an Intermediate Software Engineer specializing in Security. This role involves enhancing product security by authoring, maintaining, and extending software, contributing to web services and cloud infrastructure. Key responsibilities include patching and securing full-stack web services, implementing secure architecture patterns, reviewing engineering designs, operating security tooling, and creating automation. The engineer will collaborate with product teams, Fraud, and DevOps, participate in Scrum agile processes, and respond to security incidents. The role requires strong initiative and autonomy in a fast-paced environment.
Must have:
- Automate security tooling with Python scripts
- Patch and secure full-stack web services
- Review security of software changes
- Identify software vulnerabilities
- Experience in fast-paced Agile environment
- Familiarity with AWS, Kubernetes, Cloudflare
Good to have:
- Success in Bug Bounty programs/CTF events
- Independent full-stack web app development on GitHub
Perks:
- Remote-first work flexibility
- Unlimited Paid Time Off (PTO)
- Recharge days
- Travel discounts
- Weekly UberEats credit
- Annual company offsites
- Generous parental leave
- Flexible return-to-work plan
- Competitive salary packages
- Equity options
- Benefits from day one
- Wellness budgets
- Personal and team-level development budgets
13 skills required
Job Details
At Super.com, we’re on a mission to help people save more, earn more, and get more out of life. That goes for both our customers and our team.
For our employees, Super.com is more than just a workplace—it’s an opportunity to grow, make an impact, and unlock your full potential. We invest in learning, celebrate bold ideas, and create pathways for career growth.
We move fast, think big, and always put people first. Your career should be as rewarding as the work you do, and at Super.com, we’re here to make every day Super.
About this role:
In this Security Software Engineer role you will be responsible for authoring, maintaining, and extending software to improve the security of our product. You’ll contribute to our web service code and cloud infrastructure, updating and hardening our products against attacks and implementing secure architecture patterns. You’ll review engineering design docs, operate security tooling, and create automation to improve the velocity of our security operations processes. In this role you will report to our Security Engineering Manager, participate in Scrum agile processes, and play a specialist role among the software engineers at Super.com. Expect a culture of high autonomy, frequent collaboration, fast pace, and reliance upon your own initiative.
What you'll be working on:
- Automate and orchestrate security tooling by writing Python scripts and services
- Patch and secure our full-stack web services, applying fixes to identified vulnerabilities and implementing architectural improvements across the full range of Super.com’s products
- Act as a point of contact for reviewing the security, exploitability, and fraud risk of software changes
- Contribute a security perspective to major engineering designs and projectsIndependently identify current vulnerabilities within our product, and verify the accuracy and exploitability of detected/submitted vulnerabilities, including by implementing proofs of concept
- Operate closely with product engineers, Fraud, DevOps, and other parts of the business as a company technical resource
- Participate in our Security Operations process, responding to threat signals and incidents as they arise.
Our Technology:
- We use a state of the art architecture powered by Node and Python microservices and React frontend
- We use Postgres for storage, Redis for caching, and Snowflake for our data warehouse
- We use Gitlab for version control and CI/CD, and our infrastructure is hosted on AWS, making use of Kubernetes, RDS, etc
- We invest heavily in monitoring and automated alerting using Datadog
- We use Amplitude, Hotjar, and LogRocket for client-side metrics and experimentation
- We use Material-UI and maintain our own component library, using Figma for mock-ups
- We integrate with a multitude of third-parties to support our compliance, risk, and security policies
Who we're looking for:
- 3+ years experience professional full-stack software development
- 1+ year experience working in the security space, or equivalent education / experience
- Intermediate Software Engineer level experience with Python and React specifically
- Ability to identify vulnerabilities in software. Familiarity with the OWASP top 10, modern security tools, and a proven ability to apply identified vulnerabilities to exploit systems.
- Experience working in a fast-paced and technology focussed Agile environment Familiarity with major cloud infrastructure components such as AWS Cloud, Kubernetes, and Cloudflare
Bonus points for:
- Proven success finding vulnerabilities in Bug Bounty programs, CTF events, etc
- Independent development visible on GitHub of full-stack web applications
$89,000 - $137,000 a year
As a remote-first organization we use benchmarking data reflective of your geographical areas to ensure our compensation package is competitive based on where you reside. Your TA partner will confirm which range applies to your location as part of the hiring process.
Canada
Tier 1: $93,000 - $132,000 CAD
- Greater Toronto Area (City of Toronto, York Region, Durham Region, Peel Region, Halton Region
- Metro Vancouver (City of Vancouver, North Shore, Burnaby, New Westminster, Tri-Cities, Fraser Valley Edge, South of the Fraser River, and Richmond)
Tier 2: $89,000 - $126,000 CAD
- All other Regions and Municipalities
USA
$94,000 - $137,000 USD
We’ve got you covered
- We are remote first: You have the flexibility to work from around the world and the hours that make sense for you– so that you can do your best work while living life on your own terms
- Other perks include: unlimited PTO, recharge days, travel discounts on Travel, Weekly UberEats credit, annual company offsites
- We welcome new family additions with generous parental leave and a flexible return-to-work plan
- Competitive salary packages, equity options, great benefits from day one, wellness budgets, as well as personal and team-level development budgets
- This is just scratching the surface– see our careers site for a more detailed overview of our perks & benefits
We Believe in Equal Opportunity
We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.
Accommodations are available on request for candidates taking part in all aspects of the selection process. If needed, please notify our Talent Acquisition Partner.
Similar Jobs
Axon
Scottsdale, Arizona, United States (On-Site)
• 1 Month ago
luxsoft
Nashville, Tennessee, United States (On-Site)
• 3 Weeks ago
Trend Micro
Taipei City, Taiwan (On-Site)
• 10 Months ago
Veeam Software
Prague, Prague, Czechia (Hybrid)
• 1 Month ago
Get notifed when new similar jobs are uploaded
Similar Skill Jobs
AECOM
Winnipeg, Manitoba, Canada (Hybrid)
• 1 Month ago
Critical mass
Los Angeles, California, United States (On-Site)
• 1 Month ago
Get notifed when new similar jobs are uploaded
Jobs in Canada
Warner Bros - NetherRealm Studios
Montreal, Quebec, Canada (Hybrid)
• 2 Months ago
Super.com
Vancouver, British Columbia, Canada (Remote)
• 9 Months ago
Highspot
Vancouver, British Columbia, Canada (Hybrid)
• 1 Month ago
Amazon games
Montreal, Quebec, Canada (On-Site)
• 7 Months ago
Get notifed when new similar jobs are uploaded
Cyber Security Jobs
Yodlee
Thiruvananthapuram, Kerala, India (On-Site)
• 2 Weeks ago
Take-Two Interactive
Las Vegas, Nevada, United States (On-Site)
• 2 Weeks ago
Get notifed when new similar jobs are uploaded
