Staff Security Engineer

Job summary
Permanent contract
Barcelona
Salary: Not specified
Fully-remote
Skills & expertise
Generated content
Communication skills
Monday
Kubernetes
Typescript
Argocd
+7
Apply

Back Market
Back Market

Interested in this job?

Apply
Questions and answers about the job

The position

Job description

Back Market is the world’s leading refurbished electronics marketplace with a team of 650 people, powering operations in 18 countries (and counting!).

Named one of the World's Most Innovative Companies by Fast Company in 2019 and again in 2021, our mission is simple: empowering people to consume tech sustainably by offering folks a high quality, accessible, and more eco-friendly alternative to buying new electronics. Why? Refurbished tech helps lower our collective environmental impact. We have indeed contributed to avoid the production of more than 1,000,000 tons of CO2e worldwide since our launch in 2014.

Be part of an exciting and growing international adventure that will change the way the world consumes tech.

As a Staff Security Engineer within our CyberSecurity Tribe, safeguarding Back Market's information assets stands as the primary objective. Our SecOps team manages both Security Architecture & Engineering topics, as well as actively monitoring, responding to, and remediating incidents.

Your role is pivotal within our organization, offering unparalleled opportunities to shape not only our security architecture and stack but also the security of our products across our web and app environments. By joining our team, you'll be at the forefront of driving innovation in cybersecurity while contributing directly to our mission of promoting sustainability in the tech industry. This is more than just a job—it's a chance to make a lasting impact on the way technology is consumed globally

As a domain expert and advocate of cybersecurity best practices you will be :

  • Leading a technical focus on continuous improvement of the company's security posture, ensuring resilience to threats.
  • Strategically guiding and executing large, complex projects, driving technical vision and Security architecture, fostering collaboration, and effectively communicating to impact the entire organization's tech quality and growth.
  • Identifying blockers to organizational efficiency and effectively advocating for remediations.
  • Ensuring focus is on the highest impact, most critical, future-facing decisions.
  • Assisting managers to ensure proper delegation at all levels of the organization, appropriate decision-making, and free flow of information.
  • Sharing time between supporting and advising technical teams, automating and enhancing security controls, improving our security framework, mentoring fellow Security Engineers, and leading the design, build, and operation of modern security solutions that scale.
  • Contributing to monitoring security alerts & events to identify potential threats & incidents, investigating & analyzing security incidents to determine the extent and impact of the breach, collaborating with other teams to gather and analyze threat intelligence & maintaining and enhancing security incident detection and response procedures.
  • Informing and defining the best approaches to address challenges, aligning company goals and objectives with minimal effort expenditure.
  • What we're looking for :

  • You are a talented and experienced engineer, with at least 10 years experience of securing web services in dynamic cloud environments
  • With proven experience as a Security Engineer / SOC analyst with cross-team influence
  • A strong understanding of cybersecurity principles, techniques, and best practices
  • Acting as a role model for facilitating and balancing product and engineering concerns, including long-term sustainability
  • Demonstrable ability to plan & execute large, complex projects with interdependencies.
  • Collaborating with leaders across the company to get maximum business impact with minimum resources.
  • You believe in the importance of security automation following a secure development lifecycle, with the ability to develop your own scripts and tools to succeed in your mission.
  • Be comfortable conducting Security Requirement Analysis & propose cybersecurity architectures based on the analysis.
  • Threat intelligence and attack patterns expertise
  • Proficient in vulnerability analysis and remediation, with knowledge about setting up and tuning scanners.
  • Understanding of edge protection technologies including WAF, Bot management, rate limiting etc.
  • Familiarity with SIEM tools, network and endpoint security technologies
  • Passion for cybersecurity, hands-on, and eager to contribute code to our in-house modern security technologies.
  • You are curious, rigorous, and enjoy exploring new methods and technologies.
  • Transparency in communications and able to find solutions by partnering with your team when you don't have the answer.
  • You like to share knowledge, and make your colleagues aware of good cybersecurity practices, by supporting your proposals with concrete examples and demonstrations.
  • It would be a plus if your skills are recognized by a certification such as (ISC)² CISSP, CCSP or CSSLP, SANS GCTI, GDSA, CSA CCSK, BTL2 - or you are ready to obtain it in the near future.
  • You want to join a challenging technical environment: GCP, Kubernetes, ArgoCD, Terraform, Datadog, Cloudflare, Google Chronicle, Github, CircleCI etc., where you can spread your influence and help secure our environment.
  • Proficient in several coding languages such as Python, TypeScript, Golang, etc.
  • Great verbal and written communication skills, in English.
  • Interview process :

    * Call with Yann one of our tech talent acquisition specialists

    * Leadership interview with our engineering leadership

    * Technical interview with members of the Cybersecurity team

    * Technical interview : System design & API

    * Team Fit interview with your Manager and one of your future stakeholder

    * Value interview 

    WHY SHOULD YOU JOIN US ?

    - A meaningful job: you will help avoid thousands of tons of electronic waste and fight against planned obsolescence. It counts!

    - A meaningful company: we became a mission-driven company in January 2022.

    - Be part of a worldwide growing company based in Europe, the USA and Asia to face great challenges : you will have the freedom to innovate and adopt new ideas!

    - Work alongside passionate experts:  who will share their knowledge and help you develop and grow in your career. 

    - Grow your career: with a flexible career path and a dedicated Learning & Development team. Back Market will help you evolve with personalized internal trainings and external handpicked providers from day 1!

    - Leadership Academy by Back Market:“be a coach not a dictator” is at the core of this program ! We train and enable all our leaders to support their team towards achieving goals. Be a manager at Back Market is an unique experience we take by heart.

    - An attractive salary, equity and a host of benefits including : Lunch voucher, health insurance, relocation package, paid time off for activism in your community, parental benefits, flexible hours, etc…

    - One Loving Tribe: you will have the opportunity to work in a fast-paced, open-minded and friendly environment. 

    - Be part of one of our Employee Resource Groups createdaround shared identities, common backgrounds and/or special interests crafted to be a safe space and an expressive outlet. 

    - Several internal events: The Monday Brief (weekly)/ The Somehands (monthly)/ The All Hands (annual).

    - We’re here to SABOTAGE: It’s our mantra. It keeps us focused on what we aspire to be: a little bit sneaky, always smart, kinda frugal and constantly conspiring to create maximum impact.

    Back Market is an Equal Opportunity Employer which means we pledge to not discriminate against employees based on race, color, religion, sex, national origin, age, disability or genetic information.. If reasonable accommodations are needed for the interview process, please do not hesitate to discuss this with the Talent Acquisition Team.

    Back Market is helping to address one of the biggest challenges of our time: climate change. We take this so seriously that we were awarded status as a “Société à Mission”, or company with a social mission, by the French government. We know we can’t tackle a global problem without a globally representative team so we are committed to embedding diversity, equity and inclusion principles in every aspect of our organization. But more importantly, being One Loving & Free Spirited Tribe is in our DNA as it is one of the five foundational values of our company since we got started way back in 2014. We are committed to hiring and supporting diverse teams of people from all backgrounds, experiences, and perspectives. We know our lofty goals cannot be reached unless everyone has a seat at the table along with the resources and opportunity to grow.

    Want to know more?

    These job openings might interest you!

    These companies are also recruiting for the position of “Cybersecurity”.

    Apply