This position is no longer available.
BlaBlaCar
BlaBlaCar

Security Engineer - SIEM Expert

Permanent contract
Paris
Salary: Not specified
No remote work
Experience: > 2 years

BlaBlaCar
BlaBlaCar

Interested in this job?

Questions and answers about the job

The position

Job description

About BlaBlaCar

BlaBlaCar is the world’s leading community-based travel network, connecting over 100 million members across 22 countries looking to carpool or travel by bus. By sharing rides and filling empty seats on the road, our community avoids 1.6 million tons of CO2 emissions every year (as if Paris was free of road traffic for a year!)

We are a global and diverse team of 700+ people with 45+ nationalities, and headquartered in Paris. We’re constantly looking for new ways to leverage technology to create a more affordable, convenient, flexible and sustainable way to travel. And we are always on the lookout for people who care about making a positive impact.

The context :

By joining our Foundations department, you will be working alongside talented individuals grouped in small agile teams that each have strong ownership of their stack and goals.

Our foundations are composed of six subteams that “provide consistent, easy to use, secured infrastructures, services, and expertise to support BlaBlaCar’s growth and evolution”.

The Security Team has three main objectives:

- Reduce BlaBlaCar risk exposure by defining and implementing a strategy to identify, report, and tackle the most critical risks

- Implement a shift-left strategy and autonomy within the teams via training, guidelines, and tooling

- Detect, investigate and respond to security incidents

Role description:

As a Senior Security Engineer, your core mission will be to ensure that the Security team has the proper tools, training, and processes to monitor, investigate and respond to threats.

We expect you to lead BlaBlaCar's security operations by organizing the team security run and participating in run activities. You will be in charge of expanding our SIEM detection and incident response capabilities. You will also increase our security coverage by integrating new security tools.

Missions:

1. Organise and lead the Security team run:

  • Maintain run rotation planning to ensure run continuity
  • Improve run tooling and processes
  • Improve incident response tooling and processes

    • 2. Maintain and develop SIEM (Splunk Cloud):

  • Add new relevant log sources
  • Add new relevant alerts and enhance existing ones
  • Maintain/enhance custom Python scripts for log collection, data enrichment, and alerting

    • 3. Integrate and deploy additional security tooling:

  • Snyk (dependency vulnerability scanning)
  • Secrets scan

    • 4. Be part of the Security run (in rotation with the rest of the Security team)

  • Investigate SIEM alerts on Splunk (5 alerts/day on average):
  • Virus / Malware (EDR on employees' laptops - Phishing on company email)
  • Authentication (Impossible travel/brute force/failed authentication)
  • Cloud Security (Prisma Cloud (PAN) alerts on potentially dangerous configuration for AWS and GCP)
  • Google Workspace activity (data exfiltration/privilege escalation)
  • Lead and coordinate basic incident response for low to medium-level security incidents following established procedures (less than one a month on average)

    • Your Qualifications:

  • Experience with Splunk
  • Global and broad knowledge regarding attackers' methods, techniques, and tooling
  • Prior experience in Security alert investigation and incident response
  • Coding skills (can read Python and Go and write Python scripts)
  • Familiar Beyond Corp like IT infrastructure
  • Familiar with Cloud environment and with GitOps (infra as code, GitHub, CI/CD, …)
  • Working proficiency in English and French
  • Good communication skills: you are able to explain complex security subjects to non-technical collaborators

    • If you don’t meet 100% of the qualifications outlined above, tell us why you’d still be a great fit for this role in your application!

    What we have to offer:

  • 🌎 An international environment: over 35 nationalities across 6 countries: Brazil, France, Germany, Poland, Spain, and Ukraine.
  • ⚖️ A flexible workplace: with our hybrid remote setup and family-friendly policies, we are masters of our own schedules and work-life balance, no questions asked.
  • 💡 A culture of sharing: 360 onboarding weeks, weekly team-all BlaBlaTalks to learn about what other teams are up to, Q&A sessions with our leadership, shared company KPIs, ‘Fail, Learn, Succeed’ moments where we destigmatize and share moments of failure with others.
  • 🚀 Innovation: Coding Nights to pitch ideas outside our roadmap and make dev’ dreams come true, weekly Product & Tech Demos and blogs to share engineering stories, and access to top conferences across Europe.
  • 🌱 Impact: building a product that has a real impact on society and the environment, and sharing an office culture that prioritizes low-waste and eco-friendly practices.
  • 💜 People-first: wind down from work at our weekly breakfasts and afterworks, or show off your talent at our annual BlaBlaShow.
  • 🧭 Shared company principles that guide us in our everyday decision-making and bring us closer to our goal. Find out more about our BlaBlaPrinciples.

    • Interested in joining the ride? Here’s what your hiring journey will look like.

  • a 45-min video-call with Elodie, our Talent Acquisition Managers to get to know you, understand your career expectations, and answer your questions
  • a 60 -min video-call with Jean-Baptiste, an Engineering Manager for the SRE team
  • a 60-min video-call with a Security team engineer and another Foundations engineer to discuss your security knowledge
  • a 30 -min video-call with Nicolas Salvy, our VP of Engineering, Infrastructure & Operations

    • Our hiring process lasts on average 20-25 days and offers usually come within 48 hours.

    BlaBlaCar is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

    Your Future Benefits

    We offer benefits that have a positive impact on you and our society, just like our product!

    We are flexible - We adapt to your needs:

    - 🏠Full remote possible within your country of employment

    - 💵Home office financial support for equipment

    - 🚗Relocation package & visa support

    We are impactful - We shape our future together:

    - 📈Equity for all program

    - 🌳Company events like the impact day & coding nights

    - 💻Learning possibilities through trainings, mentoring, internal development programs, and events.

    - 🚌Free carpooling and bus rides

    We care - We care about you and your needs:

    - 👶 1-month additional parental leave 100% paid

    -🌴25 vacation days per year

    - Of course, we also cover the basics like transportation, healthcare, meal plan, etc.

    *Full remote: work from anywhere in France

    BlaBlaCar is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

    Want to know more?