Senior Software Security Engineer (f/m)

Social network you want to login/join with:

Client: Ledger

Location: Paris, France

Job Category: Other

EU work permit required: Yes

Job Reference: 401b80a9cb96

Job Views: 5

Posted: 11.05.2025

Expiry Date: 25.06.2025

We are the forever innovators, on a mission that goes beyond business: securing digital ownership in a changing world and unlocking true freedom. As revolutionaries, we look beyond today, bridging excellence and pragmatism with ambition and conviction to push the limits of what’s possible. In this innovative environment, you will help write the rules of new technology and create products that redefine security in a digital age.

Founded in 2014, Ledger is a global platform for digital assets and Web3. Over 20% of the world’s crypto assets are secured through our Ledger Nanos. Headquartered in Paris and Vierzon, with offices in the UK, US, Switzerland, and Singapore, Ledger employs over 700 professionals developing a range of products and services to enable secure buying, storing, swapping, and managing of crypto assets, including our Ledger hardware wallets line with over 7 million units sold worldwide.

Donjon, the security team at Ledger, is responsible for the security of all Ledger products. As a security engineer dedicated to consumer services, your daily work will involve attacking our products and ecosystem to maintain and enhance our industry leadership.

• Collaborate with development teams to identify and address vulnerabilities in backend services, APIs, and supporting infrastructure.
• Research cutting-edge offensive security techniques.
• Develop tools and exploits for our products and provide fixes.
• Conduct security assessments and threat modeling for Ledger's services ecosystem, including DeFi and Ledger Live services.
• Promote secure coding practices among engineering teams and present your work at conferences worldwide.

• Some experience in security, with blockchain security experience being a plus.
• Good knowledge of applied cryptography.
• Basic understanding of financial services.
• Self-motivated with the ability to stay updated on security developments.

• Extensive experience in web/backend penetration testing.
• Proficiency in Python and Rust, including secure programming practices.
• Knowledge of Kubernetes and cloud infrastructure.
• Basic knowledge of Scala is a plus.
• Experience with HSM security is a plus.
• Understanding of exploitation techniques and mitigations.
• Ability to develop tools that automate security analysis.
• Skills in designing secure architecture and documenting standards and guidelines.

• Equity: Stock options to share in the company's success.
• Flexibility: Hybrid work policy.
• Social: Company outings, social events, snacks, and drinks.
• Medical: Comprehensive health insurance coverage.
• Well-being: Personal development, coaching, and fitness programs.
• Vacation: Five weeks of paid leave plus holidays and RTT days.
• High tech: Access to high-performance equipment and gadgets.
• Transport: Reimbursement for transportation.
• Discounts: Employee discounts on products.

Ledger is committed to fairness and non-discrimination in its recruitment process.