MissionJoin us as a Security Engineer to protect our company and our clients while adopting a pragmatic approach to security that enables us to scale the business safely and rapidly as we start the journey to become a Credit Institution.ImpactAs a Security Engineer, you will work on keeping Qonto’s systems and applications bulletproof. You will audit our applications, find creative ways to abuse and secure our infrastructure, and work on exciting security features to protect our growing user base.You will join our security team led by Ayoub, our Security Director. You will report directly to Pierre, our Security Team Lead, and join a team composed of 8 Security Engineers.As a Security Engineer at Qonto, you willApply your strong security expertise to secure our exciting tech stack: AWS, Kubernetes, Kafka, MacOS, Golang, and so on…Leverage your threat modeling knowledge to shape the roadmap of the team and prioritize the most impactful projects.Develop and implement internal tools to find security vulnerabilities, mitigate them, and detect suspicious behavior.Work with product and developers during system, code, and design reviews to ensure that Qonto's applications are built according to top security standards.Share your knowledge with the team through everyday feedback and internal training.Investigate security incidents and perform forensics analysis.Enrich your security expertise and contribute to making Qonto an increasingly reputable company in the InfoSec domain.What you can expectSpend time designing robust and scalable solutions. The security team at Qonto “does tech”: they build the systems on AWS, pair with developers on Go apps, and work closely with the infrastructure team on Kubernetes.Collaborate with other teams from Developers to Ops engineers: be a part of a team that doesn’t just “create tickets” but directly contributes to improving the system.Contribute with autonomy in the security of the system: identify vulnerabilities, perform PoC, build mitigation, and detection rules.Grow your career: the team is relatively small and in construction, so there are a lot of opportunities and things to do!Your future managerYour future manager will be Pierre, who is in charge of the Security team. His background includes starting his career performing internal pentests for banks or European institutions, switching to the blue side by joining Qonto as the first security engineer, and laying the foundations for security systems like our monitoring and detection system or the web application firewall. He and the team approach security issues from first principles, break down the threat model, and find innovative ways of solving hard security problems without compromising flexibility and productivity.About YouExperience: You are familiar with common attack scenarios, either through your experience as a pentester or auditor or as part of a blue team working in a Cloud-based environment.Mastery:Cloud experience (AWS, GCP, or similar cloud provider) - MANDATORY: You must have hands-on experience working with cloud infrastructureProgramming skills - MANDATORY: You are able to code and build solutions (Python expected, Golang is a plus, or any language demonstrating strong development capabilities)You have a strong knowledge of how web applications and internet work and of secure coding best practices and OWASPYou are able to recognize application and system vulnerabilities and exploit them.You know how to safely orchestrate deployments on CI/CD pipelines (handling secrets, avoiding cache poisoning, isolating jobs, etc.).You know how to investigate security incidents using forensics tools.Mindset:Problem-solving: You are pragmatic and solution-oriented.Continuous improvement: You can and are willing to learn about technologies you may not yet master (Kafka, Swift on iOS, Golang, etc.).Curiosity: You are curious, open-minded, and passionate about information security. You are reasonably up to date about current threats and actively exploited systems, and ready to learn about new technologies and tools.Teamwork: You have good communication skills and know-how to work with a team.Languages: You are fluent in English.At Qonto we understand that true diversity isn't just about ticking boxes on a hiring checklist. Apply regardless of the boxes you tick!PerksA tailor-made and dynamic career track. An inclusive work environment. And so much more to help you succeed.Offices in Paris, Berlin, Milan, Barcelona, and Belgrade;Competitive salary package;Meal vouchers;Public transportation reimbursement (part or global);A great health insurance (depending on the country);Employee well-being initiatives: access to Moka Care to take care of your mental health and great offers for sports and wellness activities;A progressive disability and Parenthood policy (1 in 6 of Qonto employees is a parent!) and childcare benefits with selected partners;Monthly team events.Hiring processInterviews with your Talent Acquisition Manager and future managersA remote or live exercise to demonstrate your skills and give you a taste of what working at Qonto could be likeFind more information about our interview process on our careers websiteOn average, our process lasts 20 working days and offers usually follow within 48 hoursTo learn more about us:Qonto's Blog | Les Échos | L'Usine Digitale | Courrier CadresTo know how your personal data will be processed during your application process or to request its deletion, please click here.
#J-18808-Ljbffr