Security Engineer

About us
We’re Littlepay - a growing fintech headquartered in Melbourne with operations in the UK, EU, LATAM, USA, and more recently, Australia. Our payments platform enables our customers to pay for public transport using any payment card, mobile wallet, or wearable device. Processing over USD 1 billion a year in 19 countries and continuing to expand globally, we’re proud to move more people through better payment experiences.
About the opportunity
Reporting to the Head of Security, this role supports key functions across security operations and architecture, with a strong focus on enhancing threat detection capabilities and incident response.
This is an exciting opportunity for someone passionate about security and technology who is looking to deepen their expertise in threat detection and response. You’ll play a hands-on technical role in strengthening the resilience of Littlepay’s platform while contributing to the team’s broader security objectives.
What you’ll do
Collaborate with developers to design secure features, conduct threat modeling, and integrate security testing (SAST/DAST/SCA) into CI/CD pipelines to "shift security left”.
Build and tune detection logic within the SIEM using "Detection-as-Code" principles. Automate incident response playbooks via SOAR to reduce manual toil.
Act as a technical escalation point for the SOC. Investigate security alerts, perform root cause analysis, and lead remediation efforts for security incidents.
Partner with Platform Engineering to secure cloud infrastructure and remediate Infrastructure-as-Code (IaC) misconfigurations.
Deploy and maintain the security stack, including EDR (Endpoint Detection and Response), WAFs, and Zero Trust gateways
You are likely a match if you have
2 - 4 years of experience across multiple security domains
Experience in engineering cyber security tools like SIEM/SOAR, EDR, firewalls, intrusion detection systems
Experience working in AWS
Security frameworks and methodologies - OWASP Top 10, MITRE ATT&CK, Cyber Kill Chain, etc
Strong background in cyber security, with a strong understanding of cyber security principles.
Proficient in scripting languages to automate SOC processes.
Communication - we do a lot of communicating and strong written and verbal communication will be important
Empathy - we’re a service provider, so having high empathy for our internal stakeholders is a big deal
Passion for learning - we take learning and growth seriously and you’ll need to be down with that
Our benefits
We love to look after our people. At Littlepay, you'll be part of an inclusive and diverse team that celebrates the differences and unique gifts we each bring to work.
You’ll have access to:
A high trust working environment, with usage of cloud collaboration tools like Notion, Slack, Miro, Gmail and Jira that help us work together effectively
Paid professional development (including conferences, courses, learning subscriptions, etc.)
Harrison Assessments - our talent management provider that facilitates continuous professional development
A variety of flexible leave options
Superannuation contributions on all paid parental leave payments
A company-wide paid day off
Our flexible public holiday program
Flexible (hybrid) working conditions
Wellbeing support- including a free School of Life subscription for all employees, and counselling via the School of Life (UK) or our EAP program (Australia)
Our generous employee referral program
Mid-year, quarterly, and end-of-year corporate and team events and workshops
Short-term remote working arrangements
In-office expectations
At Littlepay, we believe great work happens when we solve problems, together. We see in-person collaboration as an important way to build connections, share ideas, and support each other meaningfully.
For this role, there is a requirement to be in the office a minimum of three days a week. This ensures you can engage effectively with the team, contribute to cross-functional collaboration, and participate in activities that benefit from in-person interaction.
We aim to strike a healthy balance between in-person connection and flexibility, while staying connected to deliver with quality and agility as we continue to scale, ensuring our ways of working support both our people and our shared ambition to move more people through better payment experiences.
Our recruitment process
If you’ve been shortlisted for the role, you’ll first have a chat with our Talent team, who will set up an interview if the stars align. A short workplace preferences questionnaire will also be sent to help us learn more about the way you prefer to work. Following a successful first interview, you’ll be sent a technical challenge to complete. If we like what we see, we’ll invite you to meet with a second set of Littlepay folks before being presented with an offer.
If you have any questions regarding the recruitment process or if you require any accommodations for any stage in the interview process, please don’t hesitate to let us know. Additionally, if you don’t meet all of the criteria (we know that some underrepresented groups tend to avoid applying if they don’t), please still apply. We really enjoy meeting people who might bring a fresh perspective on a problem we need to solve!
Ultimately, being part of our small but mighty team means you'll have the opportunity to learn about micropayments, and have a hand in the provision of services that impact millions of people. You’ll help us deliver on our revolutionary product roadmap and help scale our platform as we continue to expand across the globe.
If this opportunity interests you, hit apply! We look forward to learning about you.