Security Engineer - Full Remote (France) or Hybrid

Security Engineer - Full Remote (France) or Hybrid

Full-time • Contract type: Permanent – CDI.

As a Security Engineer , you’ll play a key role in shaping the security and resilience of Voyage Privé’s technology platform. You’ll work closely with Engineering, Product, and Platform teams to embed security practices into every stage of product development, deliver measurable impact, and help us scale efficiently while maintaining a strong security posture.

Your key responsibilities will include:

• Strengthen the security posture across products, data, and infrastructure: secure coding practices, code reviews, threat‑modeling, vulnerability remediation, cloud and network hardening.
• Develop automated security guardrails integrated into CI/CD pipelines (SAST, SCA, secrets scanning).
• Design secure architectures for applications, APIs, data flows, and integrations.
• Secure hybrid environments combining VMs, containerized workloads, and cloud‑native services.
• Drive proactive risk identification through continuous scanning, threat‑modeling sessions, risk assessments, and architecture reviews.
• Enable engineering teams to build secure‑by‑design practices as a trusted advisor.
• Operational security & incident readiness – participate in on‑call rotations, investigate security events, improve incident response workflows.
• Lead security improvement projects – build automation, enhance tools, optimize processes, foster a culture of security ownership.

Your profile

• 5–7 years of experience in software engineering, security engineering, DevSecOps, or equivalent technical security roles.
• Hands‑on experience with modern CI/CD systems (GitHub Actions, GitLab, Jenkins).
• Solid understanding of cloud security principles (AWS, GCP, Azure).
• Experience securing virtualized systems (VMs) and containerized workloads.
• Strong knowledge of secure coding, OWASP Top 10, and application security fundamentals.
• Experience with SAST, SCA, container/IaC scanning, runtime security tools, IAM, and secrets management.
• Pragmatic, engineering‑first mindset: balance security with developer experience and velocity.
• Excellent communication skills: translate complex security issues into actionable guidance.
• Proactive, autonomous, critical thinker with a continuous improvement mindset.
• Nice to have: prior experience or knowledge of compliance requirements (GDPR, PCI‑DSS).
• Fluent in French and English.

Benefits

• Full remote or hybrid model: 3 mandatory on‑site days per week plus 4 fully remote weeks per year (remote base: Aix en Provence, France).
• Competitive salary and benefits (details upon interview).
• Opportunity to build security foundations from scratch and influence platform design.