As the lead of our Security team at GitGuardian, you’ll be at the forefront of protecting a company that protects others.

You’ll lead a dedicated security and IT team (comprising a Security Engineer and an IT apprentice), with opportunities to grow the team further. You’ll work closely with the Senior Engineering Managers who lead our engineering tribes and our Infrastructure team, who ensure our systems’ reliability, security, and scalability.

This is a hands-on management role and your key responsibilities will include:

• Leading our security strategy, managing our security budget and resources efficiently

• Maintaining our SOC2 and ISO27001 certifications

• Enhancing our security infrastructure through strategic initiatives:

  • On the company level (securing important assets like source code, building internal security self-service tools,

  • On the product level (maintaining production security standards)

• Collaborating with our security researchers and supporting sales efforts.

• Mentoring your team (20-30% of the time).

What makes this role unique?

• Securing a security product, adding an exciting meta-layer to your work

• Working with a modern, cutting-edge tech stack (Terraform, Okta, Python)

• Joining a dynamic team where you can shape security processes and culture

• High autonomy and flexibility in building and scaling the security function

This role is perfect for someone who thrives in a fast-paced environment, values autonomy and wants to make a significant impact on a growing security-focused company. If you’re pragmatic in your approach to security and excited about building scalable solutions, we want to hear from you!

If you think you match at least 70% of these criteria, please apply!

Here’s what we consider essential for success in this role:

• Proven experience as a Security Engineer in a scaling company, having already built security monitoring & alerting systems

• Significant background (2+ years) deploying or securing assets on a cloud provider (AWS preferred)

• Hands-on experience with container technologies and Kubernetes in production (having deployed K8S clusters is a bonus)

• Proficiency in scripting languages (Python, Bash)

• Experience with CI/CD systems and automation

• Deep understanding of web application security

• Previous involvement with SOC2 or ISO27001 certification processes

• Excellent communication skills in English (our company’s first language)

• Experience in people management and/or coaching and mentoring junior engineers.

The following skills would strengthen your application, but aren’t required:

• Small team management

• French language proficiency

• Experience using Terraform to automate IAM

• Familiarity with SaaS administration (Google Workspace, Okta, HashiCorp Vault)

• Previous experience managing HashiCorp Vault clusters

1. Screening interview

To discover your professional project and evaluate if there could be a mutual match.

2. Interview with your future manager

To know more about yourself and your achievements, and present to you the team.

3. Technical interview

To evaluate your skills for the position and project yourself into the role.

4. Final interview with an Executive Manager

To detail our company’s vision and ambitions for the next couple of years.