Security Engineer - Paris / Lyon / Cracow
Mission
This role is responsible for the proactive engineering and technical optimization of the organization’s security detection stack. You will take ownership of triaging and investigating security events from GuardDuty, Sysdig, and WAF telemetry, moving beyond dashboard monitoring to perform active troubleshooting via log analysis and direct cluster interaction (with kubectl and gcloud). You will be expected to proactively tune detection logic to reduce false positives and develop automation scripts in Python or Bash to eliminate manual operational tasks. Additionally, you will drive the remediation of GitHub Advanced Security findings by providing developers with actionable code‑level fixes and ensuring security configurations are managed as code.
Responsibilities
- Security Operations & Tooling: Maintain and monitor automated DAST, SAST, and SCA setups; triage findings and work with engineering teams to ensure timely resolution of vulnerabilities.
- Incident Response: Participate in the coordination and tracking of security incidents and tickets to ensure resolution within SLAs.
- SDLC Contribution: Collaborate with developers to promote secure coding practices and API security within the Software Development Lifecycle; review third‑party components for vulnerabilities using SCA tools.
- Testing & Assessments: Assist in managing recurring security review processes, including internal penetration testing and risk assessments.
- AI Security: Apply security best practices to the organization’s usage of AI and LLM systems, supporting the broader strategy developed by senior leadership.
- Knowledge Sharing: Support security awareness training and participate in internal knowledge‑sharing sessions.
Qualifications
- 3+ years of professional experience in application / cloud security.
- Ability to analyze WAF traffic and cloud telemetry (e.g., GuardDuty, Sysdig) to identify attack patterns, eliminate false positives and tune the tooling.
- Hands‑on experience applying and auditing/remediating security best practices in AWS/GCP, Kubernetes and containerized infrastructure.
- Strong understanding of application and API security principles (e.g., OWASP Top 10, OWASP API Top 10).
- Practical experience with source code analysis and the ability to read and understand Python and/or Java.
- Hands‑on experience with security monitoring tools including SAST, DAST, and SCA + practical experience integrating them within the CI/CD pipelines.
- Solid understanding of data security, encryption techniques, and secure data handling.
- Working knowledge of network protocols (TCP/IP, DNS) and security concepts (WAFs, IDS).
Benefits
If you are in France:
- Hybrid work model – 2 days at the office, 3 days remote
- RTT days – 10 extra days off per year
- Meal vouchers (SWILE) + free snacks & coffee
- Yoga classes – Take a mindful break in our Paris office
- Supportive parental leave and family moments – even a Christmas party for your kids!
- Health insurance (ALAN) – 60% covered + full life & disability cover
- Afterworks, team celebrations & seasonal parties
- Equipment of your choice
- French & English lessons, professional development & access to Leeto CSE
If you are in Poland:
- Phone & Home Internet costs reimbursement up to 80 PLN/month
- Private health care package with Luxmed – covered for you and partially for your partner / family
- Cafeteria benefits – monthly budget to cover sport cards or other purchases
- Creative Allowance – paid as 1000 PLN gross/month
- Home office set‑up reimbursement up to 1000 PLN
- Personal Learning & Development Budget of 1500 USD/year
- 26 days of annual leave/year and 2 Mental Health days off per year
Benefits listed above are part of the compensation package for contract of employment.
We aim to celebrate diversity and are committed to creating an inclusive environment for all employees. We encourage applications from candidates of all backgrounds, identities, and experiences.
#J-18808-Ljbffr