Senior Security Engineer France

Social network you want to login/join with:

Our client is a world-renowned US startup in the field of automation. This California unicorn is still a private enterprise experiencing hypergrowth. They are looking for an exceptional Senior Security Engineer to join their team as they build their defensive security capabilities. This is a full-time, permanent role. Hybrid or Remote.

1. At least 5 years of multifaceted defensive and offensive security experience in an enterprise SaaS-based company.
2. Strong technical knowledge and deep experience in security logging and monitoring, vulnerability assessment, risk-based analysis, and vulnerability mitigation.
3. A skilled security expert who can implement tools and processes to incorporate threat intelligence from the ground up and automate threat-hunting.
4. Operational experience with AWS security solutions (e.g., Inspector, GuardDuty, Detective, Security Hub, Advanced Shield).
5. Hands-on experience designing and deploying security controls across all security domains, such as access management, data protection, vulnerability management, incident response and management, application security, network security, and security solutions including preventive, detective, and offensive security.
6. Capable of leveraging programming and/or scripting languages to solve practical security challenges (Python, Go, Ruby).
7. Strong understanding of encryption technologies (e.g., TLS, HMAC, RSA, AES, PKI).
8. Experience conducting or managing incident response and investigating targeted threats.
9. Knowledge of common penetration testing techniques, application security vulnerabilities, OWASP Top 10, SANS 25, CWE, etc.
10. Bachelor’s or Master’s degree in computer science or equivalent experience.
11. Information security professional certifications are a plus (e.g., CISSP, CISA, GSEC, etc.).
12. Ability to work autonomously in a fast-paced, cross-functional environment and comfortable with ambiguity.

1. Bolster and develop our defensive security capabilities, identifying advanced threats and developing countermeasures.
2. Respond to incidents and conduct investigations through log analysis and other sources (e.g., AWS GuardDuty, SecurityHub, Detective).
3. Engineer and automate custom detection and response capabilities to combat malicious behaviors.
4. Stay updated with Tactics, Techniques, and Procedures (TTPs) and define mitigation techniques to improve risk posture.
5. Build, support, and improve security frameworks, tools, processes, and methodologies used across SDLC and Runtime environments.
6. Conduct vulnerability assessments and security audits of assets.
7. Develop and improve incident detection and response processes.
8. Create and maintain run books for security incident management.
9. Administer security configurations for threat management platforms, including SOAR and SIEM tools.
10. Provide guidance on security architecture for threat detection and response systems.
11. Assist during security audits to demonstrate technical security capabilities.
12. Collaborate with Product Management and Development teams to enhance security programs.
13. Participate in Security Operations on-call rotation, leading incident response efforts and documentation.