Our Security team, part of the Platform tribe, is responsible for protecting all GitGuardian’s assets & systems. To do so, the team works on implementing guardrails enabling teams to deliver securely. The team focuses on these 4 scopes: applications, platform, IT & governance.
We are looking for a Security Engineer to bolster the team, and build elegant & effective defense mechanisms.
As a Security Engineer within GitGuardian’s Security team, you will work under the guidance of our Security lead and interact with all Guardians. You’ll contribute to the security team’s general backlog, and your main responsibility will be building scalable security mechanisms within GitGuardian’s software delivery pipeline, supply chain, service & corporate infrastructure.
Therefore, you will:
Work with the IT team on automating Identity and Access Management, using Terraform and Okta
Advance our Patch and Vulnerability Management programs by designing reliable and maintainable automations
Improve our security observability & monitoring systems and processes
Design and implement security mechanisms for corporate IT users (eg. ZTNA, SWG)
Our stack
Backend: Python + Django, Go, RabbitMQ, Redis
DB: PostgreSQL, Redis, Elasticsearch (+ Kibana)
Frontend: React / Typescript
Infrastructure: Docker, Kubernetes, Terraform, AWS, OVH
Security: All of the above and Okta, Vault, SignalSciences, CarbonBlack, Vanta, YesWeHack
If you think you match at least 70% of these criteria, please apply!
At least a first significant experience (3-4y) as a security, infrastructure or software engineer:
Experience with Infrastructure as Code tooling (Terraform, Kubernetes, Helm, Ansible)
Experience with containerised systems
CI/CD & toolchains
Scripting languages (Bash, Python)
Experience in cloud & web application security
Ability to communicate well, explaining security requirements to various people with differing technical backgrounds
Fluency in both French & English
Nice to have:
Experience building security monitoring & alerting systems
Experience with SOC 2 or ISO27001 requirements
Familiarity with the administration of SaaS tools (Google Workspace, Okta, …)
At GitGuardian, we are committed to building a diverse and inclusive workforce.
We will ask for your gender on the application page to help us understand the diversity of our applicant pool and to track our progress in attracting and hiring a diverse workforce. The information is optional and will not be disclosed to the hiring manager or the interview team and will not be considered in the hiring process. We appreciate your willingness to share this with us so that we can continue to improve our diversity and inclusion efforts.
1. Video call with a Talent Acquisition team member
To discover your professional project and evaluate if there could be a mutual match.
2. Interview with your future manager (45min)
To know more about yourself and your achievements, and present to you the team.
3. Technical interviews (1h30 with several team members)
To evaluate your skills for the position and project yourself into the role.
4. Final interview with an Executive Manager
To explain our company’s vision and ambitions to the next couple of years.
These companies are also recruiting for the position of “Cybersecurity”.