Platform Security Engineer

Benefits

Additional Information

About Paystack Paystack's mission is to accelerate digital payments on the continent of Africa. Over 200K of some of the most renowned businesses in Nigeria, as well as a growing number of merchants in South Africa, Ghana, and Kenya use Paystack's modern payments gateway. They include the likes of Qatar Airways, MTN, Burger King, UPS, AXA Mansard Insurance, FilmHouse Cinemas, Smile Communications, Air Peace Airlines, Crocs, Under Armour, Richemont Lifestyle Group (RLG), and many others. In just over 10 years, our growing team has introduced a steady cadence of innovation within the online payments landscape, such as automated recurring payments, the ability for customers to pay directly from their bank accounts, automated chargebacks, and much more. We've been acquired by Stripe and are doubling down on the mission to help build out Africa's payments infrastructure. Paystack builds technology to help Africa's best businesses grow - from new startups, to market leaders launching new business models. We make it easy for businesses to accept secure payments from multiple local and global payment channels, and then we provide tools to help you retain existing customers, and acquire new ones. Role Summary Every engineering team at Paystack builds on a shared cloud platform. If that platform is not secure, nothing built on top of it is secure. This role owns that foundation - not as an oversight function or as a policy team but as the engineering layer that makes the platform trustworthy by design. The decisions made here are not team-level decisions. You will own Paystack's AWS organisation end-to-end: its architecture, its account structure, and the organisation-wide controls that govern how every team operates within it. The guardrails you set, the permission model you design, and the security primitives you build are what all engineering teams depend on to do their own work effectively. You are upstream of all of them, and what you build has direct consequences for Paystack's customers, merchants, and regulatory standing across multiple markets. You will inherit a functioning platform and take full ownership of it - improving what exists, completing what was started, and defining what comes next. This is not a role where someone hands you a roadmap. You will identify what needs to be solved before it is articulated, set the technical direction for how platform security works at Paystack, and make architectural decisions with company-wide reach. You will also build the Platform Security function - shaping what it looks like, how it operates, and who it eventually comprises. You will be expected to: Own the security of Paystack's AWS organisation as a whole - its architecture, account structure and the organisation-level controls that apply across every team, product, and environment at the company Design, implement, and govern how access works across the entire organisation - defining the permission model from first principles, building the systems that enforce it, and ensuring it holds as the company scales. Examples of the kind of work this involves include self-service permission services and horizontal access control systems that engineering teams can rely on without needing to involve security on every request Define and enforce the cloud security baseline that all engineering teams build within - ensuring that what gets provisioned meets a consistently high standard by default, not by intervention Act as the Security team's embedded partner to DevOps - present from the start of infrastructure decisions (not at the end of them) and the central point of contact for security questions from across the engineering organisation Ensure that secrets management, identity and access boundaries, and the security of the supply chain at the infrastructure layer are robust, auditable, and well-maintained - providing the foundation that Application Security depends on, without owning its remit Own the security observability pipeline up to the point of delivery - ensuring logs and signals are generated correctly, structured for consumption, and reliably delivered to Security Operations, which then owns what is done with them Translate compliance requirements across multiple active regulatory frameworks and data protection regimes into concrete, automated infrastructure controls - encryption baselines, access governance, audit logging, and programmatic evidence generation - so that GRC has the technical substance it needs to do its work Anticipate where the platform's threat landscape is heading, not just where it has been - building controls that are durable under future conditions, not just the ones you can see today Write code that solves real infrastructure security problems with the same rigour you would apply to production engineering - your output is a platform, and it needs to hold Make security the path of least resistance for engineering - the controls you build should make the secure option t

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at paystack? Share your experience