openteamtailorbalderton
Security Engineer
GitGuardian
LocationParis
Workplacehybrid
Posted2026-06-08T12:03:00+02:00
Last observed2026-06-29 00:42:34.369870
Job idbalderton-gitguardian:teamtailor:61eed1ab-569b-475d-84bd-3cfb68662bdb
About GitGuardian GitGuardian is a global cybersecurity scale-up. The company is based in Paris, New-York City, Boston. Among our early investors who saw our market value proposition, are the co-founder of GitHub, Scott Chacon, along with Solomon Hykes , Docker's co-founder. American and European top-tier VC firms have also invested in GitGuardian. GitGuardian leads the way in Non-Human Identity security , offering end-to-end solutions from secrets detection in code, productivity tools and environments to strong remediation, observability and proactive prevention of leaks. Our solutions are already used by more than 700K developers worldwide! About your team and your mission The Security & IT team is responsible for protecting GitGuardian’s infrastructure, applications, and internal access systems, while ensuring compliance with security standards and customer requirements. It operates in a highly cross-functional way, working closely with engineering teams (product and infrastructure) to secure systems, support developers in building secure software (code reviews, security audits, awareness), and handle operational security and compliance topics (IAM, vulnerability management, alerting, incident response). The team also plays a key role in addressing customer security requirements and maintaining GitGuardian’s trust standards. Key projects Redesign of the identity and access management (IAM) system and migration to a cloud-based solution Migration from VPN to Cloudflare Access Improvements to monitoring and SIEM to reduce noise and strengthen alert detection Strengthening vulnerability management and incident response processes Ongoing SOC 2 compliance program and handling of customer security questionnaires Your main responsibilities will be to: You work across both build (designing and automating security mechanisms) and run (handling security risks and operational security activities), in close collaboration with engineering teams. Concretely, you will: Automate and strengthen Identity and Access Management (IAM) in partnership with the IT team (Terraform, Okta) Improve software supply chain security, as well as patch management and vulnerability management programs Develop security observability capabilities (monitoring, SIEM, alerting) Design and deploy security mechanisms for corporate IT environments (ZTNA, SWG, etc.) Contribute to application security through architecture and code reviews, as well as security assessments of new features Take part in operational security activities: vulnerability and alert handling, incident response, and remediation coordination Contribute to SOC 2 compliance and handle customer security questionnaires Technical environment Application & Pipeline Security: GitLab CI (pipeline security gates, SAST/DAST integration) StackHawk (DAST) GitGuardian (secrets detection) YesWeHack (bug bounty) Backend & Frontend: Python + Django, Rust, RabbitMQ, PostgreSQL, Redis React / TypeScript Infrastructure & DevSecOps: Docker, Kubernetes, Terraform, Helm AWS, OVH HashiCorp Vault (secrets management) Security & Compliance: Panther SIEM Cloudflare WAF CrowdStrike (EDR/endpoint protection) Vanta (SOC 2 compliance automation) Monitoring & Observability: Coralogix Identity & Access: Okta (SSO, SCIM provisioning) Google Workspace IT & Collaboration: Kandji, Landscape (device management) n8n (workflow automation) Notion, Slack, Linear About you If you think you match at least 70% of these criteria, please apply! Here's what we consider essential for success in this role: You have at least 2 years of experience as a security, infrastructure, or software engineer You know how to automate your workload using scripting languages (Bash, Python) You are comfortable working in containerised environments (Docker at minimum, Kubernetes is a plus) You understand the principles of Secret Management: never hardcode secrets, environment separation, rotation, least privilege You know the basics of cloud and web application
This page is generated from the committed OpenOpps static snapshot. Use the source posting or apply link for the employer's current canonical posting state.