Our Security team, part of the Platform tribe, is responsible for protecting all GitGuardian’s assets & systems. To do so, the team works on implementing guardrails enabling teams to deliver securely. The team focuses on these 4 scopes: applications, platform, IT & governance.

We are looking for a Security Engineer to bolster the team, and build elegant & effective defense mechanisms.

As a Security Engineer within GitGuardian’s Security team, you will work under the guidance of our Security lead and interact with all Guardians. You’ll contribute to the security team’s general backlog, and your main responsibility will be building scalable security mechanisms within GitGuardian’s software delivery pipeline, supply chain, service & corporate infrastructure.

Therefore, you will:

• Work with the IT team on automating Identity and Access Management, using Terraform and Okta

• Advance our Patch and Vulnerability Management programs by designing reliable and maintainable automations

• Improve our security observability & monitoring systems and processes

• Design and implement security mechanisms for corporate IT users (eg. ZTNA, SWG)

Our stack

• Backend: Python + Django, Go, RabbitMQ, Redis

• DB: PostgreSQL, Redis, Elasticsearch (+ Kibana)

• Frontend: React / Typescript

• Infrastructure: Docker, Kubernetes, Terraform, AWS, OVH

• Security: All of the above and Okta, Vault, SignalSciences, CarbonBlack, Vanta, YesWeHack

If you think you match at least 70% of these criteria, please apply!

• At least a first significant experience (3-4y) as a security, infrastructure or software engineer:

  • Experience with Infrastructure as Code tooling (Terraform, Kubernetes, Helm, Ansible)

  • Experience with containerised systems

  • CI/CD & toolchains

  • Scripting languages (Bash, Python)

• Experience in cloud & web application security

• Ability to communicate well, explaining security requirements to various people with differing technical backgrounds

• Fluency in both French & English

Nice to have:

• Experience building security monitoring & alerting systems

• Experience with SOC 2 or ISO27001 requirements

• Familiarity with the administration of SaaS tools (Google Workspace, Okta, …)

At GitGuardian, we are committed to building a diverse and inclusive workforce.

We will ask for your gender on the application page to help us understand the diversity of our applicant pool and to track our progress in attracting and hiring a diverse workforce. The information is optional and will not be disclosed to the hiring manager or the interview team and will not be considered in the hiring process. We appreciate your willingness to share this with us so that we can continue to improve our diversity and inclusion efforts.

1. Video call with a Talent Acquisition team member

To discover your professional project and evaluate if there could be a mutual match.

2. Interview with your future manager (45min)

To know more about yourself and your achievements, and present to you the team.

3. Technical interviews (1h30 with several team members)

To evaluate your skills for the position and project yourself into the role.

4. Final interview with an Executive Manager

To explain our company’s vision and ambitions to the next couple of years.