Security Engineer (intermediate)
Role details
Job location
Tech stack
Job description
The Security & IT team (3 people) is responsible for protecting all GitGuardian's assets & systems, implementing guardrails enabling teams to deliver securely. The team focuses on these four scopes: applications, infrastructure platform, IT & governance. As a Security Engineer, you will work under the management of our Security lead and interact with all Guardians. You'll contribute to the security team's general backlog, and your primary responsibility will be building scalable security mechanisms within GitGuardian's software delivery pipeline, supply chain, service & corporate infrastructure. Your Main Responsibilities Will Be To
Work with the team on projects (70% of the time) such as:
Automating Identity and Access Management on Okta. Advancing on securing our software supply chain, and patch and vulnerability management program by designing reliable and maintainable automations. Improve our security observability & monitoring systems and processes. Design and implement security mechanisms for corporate IT users (eg, ZTNA, SWG). Enhance our application security by participating in architecture and code reviews with our project managers and developers, performing pentesting of new features, and assisting in offensive engagements.
Contribute to the team's operational activities (30% of the time) such as:
Handling reports from our bug bounty programs, ensuring timely coordination and remediation with relevant teams. Responding to identified threats & vulnerabilities detected by our security stack (SIEM, WAF, EDR, DAST, …).
Technical environment
Frontend: React / TypeScript Backend: Python + Django, Rust, RabbitMQ, PostgreSQL, Redis Infrastructure: Docker, Kubernetes, Terraform, AWS, OVH Security: Hashicorp Vault, SignalSciences WAF, CarbonBlack, Vanta, YesWeHack, Panther SIEM, StackHawk VCS: Gitlab Monitoring: Grafana, Datadog IT: Okta, Google Workspace, Kandji, Landscape, N8N, Notion, Video call with Ghislain, your future manager (45min) Technical Interview (1h30) Interviews with the CTO, n+2 (60min) Final interview with an Executive Manager (30min) References check
Benefits
Package that includes stock-options Lunch voucher (Swile) Non-charged health insurance for children (Sidecare / Generali) Up to €300 to improve your home office set-up Yearly holiday allowance Referral bonus of 4000€ for any new Guardian we might hire thanks to you Team building: monthly budget dedicated to each employee that you can spend as you wish, with colleagues (latest examples to date: Michelin star restaurant, karaoke, stand-up show, kitesurfing week-end, ...) Remote policy: hybrid (2 days/week at the office) Opportunities for career development in the long term
Requirements
You are fluent in English. You have at least a first professional full-time experience as a security, infrastructure or software engineer. You know how to automate your workload using scripting languages (bash, python) Experience with containerised systems. You know the basics of cloud & web application security. You are familiar with the administration of SaaS tools (Google Workspace, Okta, …). You understand the principles of Secret Management
Additional skills that would strengthen your application but aren't required
Speaking French. Experience with Infrastructure as Code tooling (Terraform, Kubernetes, Helm, Ansible). Experience building security monitoring & alerting systems. Experience with a software vendor scaleup. Experience with SOC 2 or ISO27001 requirements.
