Skip to main content

Junior Security Engineer

Type:
Full-time
Location:
Sofia
Team:
Engineering
Apply now
View all positions

Company Mission

Payhawk is a leading global spend management solution for scaling businesses. Headquartered in London and combining company cards, reimbursable expenses and accounts payable into a single product; its future-facing technology enables finance teams to control and automate company spending at scale.

The Payhawk customer base includes fast-growing and mature multinational companies in 32 countries including LuxAir, Quantive, and Wagestream. With offices in New York, London, Berlin, Munich , Barcelona, Paris, Amsterdam, Vilnius and Sofia; Payhawk is backed by renowned investors such as Lightspeed Venture Partners, Greenoaks, QED Investors, Bek Ventures and Eleven Ventures.

Our values include supporting flat hierarchies, taking ownership and responsibility, seeking and providing feedback, managing constructive critique, and speaking our minds. We understand that the best ideas don’t all come from the same place, so we encourage diversity and inclusion in all areas of our work.

The future of fintech is about more than money, and we believe in work-life balance, continual learning, and empowered teams. We’re also on a journey to measure and improve our environmental and social impact. From virtual cards to digital subscriptions, our software and automation help take paper out of the equation for our customers, too.

We’re changing the world of payments, and we’re looking for an exceptional team to help us.

Junior Security Engineer

About the Role

We are looking for a Junior IT & Security Engineer to assist in maintaining and improving the organization’s security posture through proactive monitoring, vulnerability management, and incident response. As a key member in our IT & Security Team. this role is ideal for individuals passionate about cybersecurity who are eager to grow their technical skills and contribute to safeguarding enterprise systems and data.

Responsibilities

  • Assist in the implementation, monitoring, and maintenance of cybersecurity controls across the organization.
  • Conduct regular vulnerability scans, analyze results, and coordinate remediation efforts with relevant stakeholders.
  • Provide technical support for system monitoring, patching, and troubleshooting to ensure optimal endpoint performance and security.
  • Support the configuration, management, and maintenance of the company’s mobile device management (MDM) and endpoint protection platforms.
  • Maintain accurate and up-to-date records of endpoint management, asset inventories, and software configurations.
  • Manage software deployments, operating system imaging, and patch compliance across enterprise endpoints.
  • Collaborate with other teams to maintain security baselines and to respond to security incidents.
  • Monitor, investigate, and respond to security alerts and incidents using SIEM and EDR tools, ensuring timely containment and mitigation.
  • Document security monitoring activities, incident response actions, and investigation outcomes using ticketing and case management systems.
  • Participate in security awareness initiatives and help promote best practices across the organization.
  • Support the evaluation and implementation of new security tools, technologies, and automation scripts to improve efficiency.

Requirements

Education & Certifications

  • Degree in Computer Science, Information Security, Information Technology, or a related field (or 2+ years of relevant work experience).
  • Relevant entry-level security certifications would be considered a strong advantage (CompTIA Security+, Cisco CyberOps Associate, Microsoft Security Operations Analyst, or similar.)

Technical Skills

  • Basic understanding of networking fundamentals (TCP/IP, DNS, firewalls, VPNs).
  • Familiarity with operating systems (Windows, macOS) and endpoint security tools.
  • Exposure to SIEM, EDR, or log management systems (e.g., Splunk, Sentinel, CrowdStrike, or similar).
  • Knowledge of vulnerability assessment tools (e.g., Nessus, Qualys, OpenVAS).
  • Experience with scripting or automation using PowerShell, Python, or Bash is a plus.

Soft Skills

  • Strong analytical and problem-solving skills
  • High attention to detail and ability to prioritise tasks in a fast-paced environment
  • Excellent communication and teamwork
  • Eagerness to learn, adapt, and grow in a dynamic cybersecurity team.

Company Benefits

  • Competitive compensation package
  • 30 days holiday paid leave
  • One week exchange policy to another Payhawk office (London, Berlin, Barcelona, Paris, Amsterdam and Vilnius)
  • Flexible working hours and opportunity to work from home
  • Regular team-wide events
  • Additional medical care
  • MultiSport card fully funded by us
  • Company office massages
  • Personal assistant service
  • Opportunity to use the Payhawk product (that is, essentially, built by you).