Senior Security Engineer - Blue Team

What if, in your next adventure, you were surrounded by people who, like you, look for an unlimited playground to explore, share, and test, would you care to hear more? You've opened the right door! As an R&D team, making sure your ideas are heard and encouraged is what we strive to do!

What You'll Do: As a Security Engineer in the Security Blue - Platform & Infrastructure team, you will be at the forefront of our efforts to protect our extensive infrastructure, consisting of over 40,000 servers and a diverse technology stack spanning hybrid cloud and on-premise environments. Your role will be a blend of reactive and proactive security measures to ensure the safety and integrity of our systems.

• Proactive Security Projects:

• Lead hardening efforts across our infrastructure and platforms.
• Support / review Platform & Infrastructure design with a security focus
• Develop and implement strategies and solutions to prevent incidents and vulnerabilities from impacting our systems.

• Vulnerability and Incident Management:

• Engage in threat intelligence activities to detect new patterns and attacks.
• Stay updated with CVEs (Common Vulnerabilities and Exposures) that could impact our infrastructure, and trigger response plans when necessary.
• Respond to security incidents, coordinating responses with multiple teams, handling reporting, and managing escalations.

• Detection Engineering:

• Craft new detection mechanisms to identify anomalies and potential threats.
• Utilize our SIEM system built on ElasticSearch for monitoring and analysis.

• Automation and Scripting:

• Leverage coding skills to build automation tools and scripts to enhance security operations.

• Collaboration:

• Work closely with teams managing the infrastructure and platform.
• Maintain client/provider relationships with the Security Yellow team to ensure the right tools are in place.
• Support the compliance team in their mission, providing security insights and assistance.

• Educational Background:

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent practical experience).

• Skills and Experience (at least 3 out of 7)

• Experience in securing (or administrating) cloud infrastructure
• Experience in securing (or administrating) on premise infrastructure
• Experience in threat intelligence, incident response, and vulnerability management.
• Familiarity with SIEM systems, particularly ElasticSearch.
• Coding and scripting capabilities for automation (languages such as Python, Go, Bash, etc.).
• Strong analytical skills to assess and respond to security threats.
• Effective verbal and written communication skills for collaboration and reporting.

• Soft Skills:

• Ability to influence without authority to drive security best practices.
• Excellent organizational skills to manage multiple tasks and incidents effectively.
• Perseverance in continuously improving security measures and tackling complex challenges.

• The security group consists of approximately 20 members, divided in 3 teams: a compliance team, a yellow and a Blue team.
• The Blue team, focused on security operations, is divided into three specialized pods: Application Security, Digital Workplace, and Platform & Infrastructure.
• This position will report to the Devlead.
• Collaborate closely with cross-functional teams managing infrastructure and platforms, and support the compliance team in their security-related tasks.

We acknowledge that many candidates may not meet every single role requirement listed above. If your experience looks a little different from our requirements but you believe that you can still bring value to the role, we'd love to see your application!

Criteo is a leader in commerce media, helping brands, agencies, and publishers create meaningful consumer connections through AI-powered advertising solutions. We're shaping a more open and sustainable digital future for advertising.

At Criteo, our culture is as unique as it is diverse. From our offices across the globe or from the comfort of home, our 3,600 Criteos collaborate together to build an open, impactful, and forward-thinking environment.

We foster a workplace where everyone is valued, and employment decisions are based solely on skills, qualifications, and business needs-never on non-job-related factors or legally protected characteristics.

• Ways of working - Our hybrid model blends home with in-office experiences, making space for both.
• Grow with us - Learning, mentorship & career development programs.
• Your wellbeing matters - Health benefits, wellness perks & mental health support.
• A team that cares - Diverse, inclusive, and globally connected.
• Fair pay & perks - Attractive salary, with performance-based rewards and family-friendly policies, plus the potential for equity depending on role and level.

Additional benefits may vary depending on the country where you work and the nature of your employment with Criteo.