Product Security Engineer
- Verto
Job Description
About Verto
At Verto, we're on a mission to democratise global finance and empower businesses in Emerging Markets to reach the world. Founded by British-Nigerian entrepreneurs Ola Oyetayo and Anthony Oduu, our roots in Africa provided a firsthand understanding of the significant challenges businesses face with cross-border payments, ranging from illiquid currencies and high fees to slow transactions. This deep-rooted insight is why Africa remains a core focus, as we're committed to bridging the gap between emerging and developed markets and fostering global economic growth.
What started as an FX solution for the Nigerian Naira has evolved into a market-leading platform, enabling thousands of businesses to seamlessly transfer billions of dollars annually. We believe that where you do business shouldn’t determine your success or ability to scale. We're creating equal access to the easy payment and liquidity solutions that are already a given in developed markets.
We're not alone in realising this crucial need; we're backed by world-class investors including Y-Combinator, Quona, and MEVP. With Verto receiving the Milken-Motsepe Prize, appearing on CNBCs list of fastest growing UK companies, the Deloitte Fast 50 and Sifted’s fastest-growing UK tech companies, we are building a seamless cross-border payment future.
Join us as we continue to grow and transform global finance.
Role Overview
This role is critical for fortifying Verto's application security by focusing on penetration testing across Web, API, and mobile platforms, while also embedding security automation directly into our development processes. You will significantly reduce vulnerabilities and champion a security-first culture, ensuring our products are robust and trustworthy. We’re seeking a skilled Security Engineer (DevSecOps + Pentesting ) who is passionate about security testing and securing modern applications.
What You’ll Be DoingConduct in-depth penetration testing for Web, API, and Mobile (iOS & Android) applications
Perform secure code reviews and provide actionable remediation guidance, especially for Node.js
Automate security testing and integrate tools into CI/CD pipelines
Writing scripts for automating mundane security tasks
Develop and implement security best practices (OWASP Top 10, SANS 25)
Monitor and strengthen AWS cloud security configurations, including AWS auditing and AWS penetration testing
Collaborate with development teams for early-stage threat modeling and risk assessments
Create and maintain security playbooks for incident response
Stay ahead of emerging threats and introduce new security methodologies
Conduct in-depth penetration testing for Web, API, and Mobile (iOS & Android) applications
Perform secure code reviews and provide actionable remediation guidance, especially for Node.js
Automate security testing and integrate tools into CI/CD pipelines
Writing scripts for automating mundane security tasks
Develop and implement security best practices (OWASP Top 10, SANS 25)
Monitor and strengthen AWS cloud security configurations, including AWS auditing and AWS penetration testing
Collaborate with development teams for early-stage threat modeling and risk assessments
Create and maintain security playbooks for incident response
Stay ahead of emerging threats and introduce new security methodologies
What You NeedHands on experience with AWS (no labs/test environments)
Proven experience in penetration testing for Web, API, and Mobile applications
Hands-on experience in secure code reviews and remediation guidance
Hands on experience in implementing and optimizing security solutions (simply using SAST/DAST/SCA tools won’t do)
Cloud security expertise, particularly in AWS (IAM, security monitoring, infrastructure security, including AWS auditing and AWS penetration testing capabilities)
Strong expertise in security testing tools (e.g., Burp Suite, OWASP ZAP, Python scripting)
Proficiency in scripting languages such as Python or other relevant languages (e.g., PowerShell, Bash)
Solid understanding of OWASP Top 10, SANS 25, and other security frameworks
Experience integrating security tools into CI/CD pipelines
Hands on experience with AWS (no labs/test environments)
Proven experience in penetration testing for Web, API, and Mobile applications
Hands-on experience in secure code reviews and remediation guidance
Hands on experience in implementing and optimizing security solutions (simply using SAST/DAST/SCA tools won’t do)
Cloud security expertise, particularly in AWS (IAM, security monitoring, infrastructure security, including AWS auditing and AWS penetration testing capabilities)
Strong expertise in security testing tools (e.g., Burp Suite, OWASP ZAP, Python scripting)
Proficiency in scripting languages such as Python or other relevant languages (e.g., PowerShell, Bash)
Solid understanding of OWASP Top 10, SANS 25, and other security frameworks
Experience integrating security tools into CI/CD pipelines
Note: We will not be able to progress your application without all the above skills/qualifications
Best If You HaveExperience with Node.js applications for code reviews and remediation
Relevant certifications (e.g., OSCP, CISSP, CEH, AWS Security Specialty, Certified DevSecOps Engineer).
Experience working in a fast-paced startup environment
Experience working in a DevOps environment
Experience with Infrastructure as Code (IaC) tools (Terraform, Ansible)
Experience with specific industry domains (e.g., Fintech, Logistics, E-commerce) where robust application security is critical
Experience with Node.js applications for code reviews and remediation
Relevant certifications (e.g., OSCP, CISSP, CEH, AWS Security Specialty, Certified DevSecOps Engineer).
Experience working in a fast-paced startup environment
Experience working in a DevOps environment
Experience with Infrastructure as Code (IaC) tools (Terraform, Ansible)
Experience with specific industry domains (e.g., Fintech, Logistics, E-commerce) where robust application security is critical
About the Interview Process
A chat with the talent team, and 3 (technical + culture) interview rounds
Life At Verto
PerksInsurance paid by the company
Health and wellness benefits (with specific added benefits depending on the location of the role)
Yearly salary review based on inflation, personal and business performance
Access to entire Udemy’s library
Budget for professional development courses
Work-From-Anywhere policy for certain durations
Integration programme (opportunity to work from our global offices)
Regular team social events
Pension scheme (depending on the role location)
Flexible work arrangements
Exposure to work with globally distributed teams
Location specific benefits like car lease policy, cycle to work, gym membership, etc.
Insurance paid by the company
Health and wellness benefits (with specific added benefits depending on the location of the role)
Yearly salary review based on inflation, personal and business performance
Access to entire Udemy’s library
Budget for professional development courses
Work-From-Anywhere policy for certain durations
Integration programme (opportunity to work from our global offices)
Regular team social events
Pension scheme (depending on the role location)
Flexible work arrangements
Exposure to work with globally distributed teams
Location specific benefits like car lease policy, cycle to work, gym membership, etc.
You’ll Fit Right In If YouLove asking “why?”
Value solving problems over just completing tasks
Understand sync vs. async communication practices
Thrive in ambiguity and change
Actively seek feedback
Prioritise impact over activity
Are fun to work with - we love good humour!
Love asking “why?”
Value solving problems over just completing tasks
Understand sync vs. async communication practices
Thrive in ambiguity and change
Actively seek feedback
Prioritise impact over activity
Are fun to work with - we love good humour!
CultureMission-Driven Impact Work: Be at the forefront of simplifying cross-border payments, directly contributing to a borderless future for global businesses, particularly in emerging markets.
High Performance & Ownership: We empower you to take risks, be results-driven, and take ownership. Act fast, deliver impactful results, and make the impossible possible. We set you up for success.
Collaborative & Supportive Environment: We work "as one," sharing successes and failures openly. We foster a transparent, supportive atmosphere where everyone does their best. A community of colleagues from varied backgrounds, who care deeply about their craft, collaborate with purpose, and enjoy the journey together.
Industry Competitive Compensation & Benefits: We compensate our employees in recognition of the great value they bring to the business; our compensation and benefits package are competitive in the industry across all our geographies. This includes performance based salary reviews, comprehensive health and wellness benefits, generous paid time off and flexible working arrangements to support your career and life.
Our Core Values: Our core values mirror the focus we have, energy we bring to work and shared expectations within the team.
Champion the Mission: We are driven by curiosity and belief to solve cross-border payments pain points globally.
Be the Best: We are open, take appropriate risks, adopt a results-driven approach, and are the best at what we do.
Work as One: We are transparent with sharing failures and mistakes as well as successes.
Go the Extra Mile: We deliver beyond what is possible. We make impossible possible.
Customer First: We are creative in solving existing problems and bold in designing a new and better experience for customers.
Run with It: We are determined, seek challenges, take ownership of tasks, act fast and deliver results.
Mission-Driven Impact Work: Be at the forefront of simplifying cross-border payments, directly contributing to a borderless future for global businesses, particularly in emerging markets.
High Performance & Ownership: We empower you to take risks, be results-driven, and take ownership. Act fast, deliver impactful results, and make the impossible possible. We set you up for success.
Collaborative & Supportive Environment: We work "as one," sharing successes and failures openly. We foster a transparent, supportive atmosphere where everyone does their best. A community of colleagues from varied backgrounds, who care deeply about their craft, collaborate with purpose, and enjoy the journey together.
Industry Competitive Compensation & Benefits: We compensate our employees in recognition of the great value they bring to the business; our compensation and benefits package are competitive in the industry across all our geographies. This includes performance based salary reviews, comprehensive health and wellness benefits, generous paid time off and flexible working arrangements to support your career and life.
Our Core Values: Our core values mirror the focus we have, energy we bring to work and shared expectations within the team.
Champion the Mission: We are driven by curiosity and belief to solve cross-border payments pain points globally.
Be the Best: We are open, take appropriate risks, adopt a results-driven approach, and are the best at what we do.
Work as One: We are transparent with sharing failures and mistakes as well as successes.
Go the Extra Mile: We deliver beyond what is possible. We make impossible possible.
Customer First: We are creative in solving existing problems and bold in designing a new and better experience for customers.
Run with It: We are determined, seek challenges, take ownership of tasks, act fast and deliver results.
Diversity & Inclusion at Verto
Verto is an equal opportunities employer and we value diversity. Anyone seeking employment at Verto is considered based on Merit, Competence, Qualifications and their Talent. We are proud to be a truly international team and we do not discriminate in our hiring process.
