⭐ We’re looking for a Cloud Security Engineer w/m to join our team - SaaS & Infrastructure in Paris / Full remote possible !
About the team:
Made up of six subteams (Dashboard, Engine, Infrastructure, Integrations, Threat Research & Security), the DataDome tech team is spread across Europe and the US. We handle over 2 000 billion events per day giving responses within 3ms (99p). We are present in more than 25 data centers around the world, deployed using Docker.
We deploy on AWS, Scaleway, Vultr, and GCP, using Docker, Ansible and Terraform, and monitor with Grafana and Prometheus. We handle an average of 8 billion requests per day and manage more than 300 TB of data per month.
When it comes to our stack, we run real-time detection layer in Java, low latency Stream Engine running on Flink in Scala, ElasticSearch for storage, Kafka for communication between layers, HAProxy for load balancing, Symfony 5 & Angular 9 for our dashboards. We use Slack, GitHub, Hangouts, & StackOverflow for Teams. While previous experience in cyber is not a must, we'll pair you with mentors who will help you bridge the gaps. As #growth is part of our DNA, we’ll give you the resources and support you need to develop mastery
You'll be SecOps Engineer in the security team, working in strong collaboration with the engineering team (50 people)
👉 You will be more specifically in charge of:
As a SecOps Engineer, you are focused to preserve DataDome's information assets, customer information, DataDome employees and keeping compliance requirements.
Supporting tooling and automation roadmaps that facilitate compliance activities and lead to reducing the disruption of audit events.
Working on many technical topics and managing dedicated tools and solutions, for example: Cloud & Containers security, CSPM, IAM, SSO, Linux server hardening, encryption, secret management, security scanning, policy-based control for cloud-native environments, SIEM, zero-trust architecture ... and more.
You will be responsible for security solutions (SaaS services, open-source tools, tools you will develop): Discover and select, manage day-to-day, monitor and put in place procedures.
Monitoring, supporting and enforcing best practices in terms of Code & Infra Security in collaboration with the engineering team.
Performing technical security assessments, remediation and managing security incidents
Contributing to improving the DataDome Real-Time Bot Protection solution.
Contributions :
Experience in DevOps/ SRE.
You are familiar with open-source security software.
👤 What we look for:
- Experience in Cloud Security: AWS, GCP, Docker, Terraform, Elasticsearch stack and Kubernetes.
- Experience in security automation (SAST, Policy as a code ...)
- You know how to code tools in Python or Bash, Jenkins jobs
- Experience in IT Security (Google Workspace, Mac, Windows, Linux, MDM).
- You know industry compliance and security standards including SOC2, OWASP or CIS.
- You have a strong understanding and experience with attacks and mitigation methods.
- Strong written and verbal communication skills in French and English.
- You are open, honest, enthusiastic and direct in your communications.
What’s in it for you?
- Flex Life: Flexible remote, hybrid or in office options, including working from our Paris office, located next to the Opera Garnier + 500€ stipend to help you set up your ideal workspace.
- Generous Health Benefits: Leading healthcare providers for each EU country (e.g. Alan in France).
- Professional Development: #Growth is part of our DNA, therefore we provide an annual stipend to invest in yourself.
- Events & Teambuilding: Feel the #TeamSpirit both virtually & onsite, with several events & workshops planned throughout the year, including two annual offsite events, summer & winter parties, lunch & learns, & much more.
- Perks we prefer to adapt to what works best for you. Some prefer lunch on us, others prefer sports with friends, therefore we believe BotBusters should decide what works best for them.
- Parent Care: Gift & care packages for parents.
- PTO: Based on the country you are based from (e.g. 25 days in France).
What are the next steps?
- If your application is selected, our Talent Acquisition Manager will contact you for a first chat
- You will then meet with our Engineering Manager
- You will do a case study and present it to our Engineering Manager or team members
- The final step will be a 1to1 meeting with our CTO
- Welcome to DataDome!
🦄 DataDome is a global cybersecurity scale-up that protects e-commerce websites against online fraud and advanced cyberattacks. Our mission is to free the web from fraudulent traffic.
We use machine learning technology to detect and block the most sophisticated "bad bots" in real time. We’re proud to protect 250+ companies worldwide, including TripAdvisor, The New York Times, Foot Locker, Patreon, Carrefour, BlaBlaCar, ZocDoc, Veepee, and Reddit—just to name a few.
As a remote-friendly company, our 120+ (and counting) “BotBusters” from around the world join together—both virtually and in our offices—to protect our customers from malicious traffic.
DataDome is setting the new standard in online fraud protection with our core values of team spirit, growth, passion, and customer centricity.
DataDome is an equal opportunity employer, and proud to be committed to diversity and inclusiveness. We will consider all qualified applicants without regard to race, color, nationality, gender, gender identity or expression, sexual orientation, religion, disability or age.