Skello

Lead Security Engineer – Hands-on

Skello

full-time

Posted on:

Location Type: Hybrid

Location: ParisFrance

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

CloudFlux

About the role

  • Support and guide developers in securing their microservices architectures.
  • Define and implement security gates in the GitHub CI/CD pipeline (vulnerability scanning, secret management).
  • Act as the technical reference for the Cloud team on network and application security topics.
  • Define internal IT security policies and best-practice guidelines.
  • Scope and manage penetration testing campaigns and ensure remediation follow-up.
  • Provide strategic guidance on the selection of future security tools (Build vs. Buy).
  • Lead incident response and post-mortem activities.
  • Manage and optimize the EDR solution across the entire estate (PC/Mac) in collaboration with the two IT Support team members.
  • Oversee the configuration and evolution of the Firewall (Fortinet) to ensure segmentation and traffic security.
  • Launch and run a Security Champions program within squads to promote best practices close to the code.
  • Ensure technical GDPR compliance (encryption, anonymization) in coordination with the Data Protection Officer (DPO).
  • Streamline responses to customer security questionnaires to support Sales growth.

Requirements

  • Minimum 3 years' experience in a permanent role.
  • Business mindset: You understand that in an HR Tech company, security is a product feature before being a technical constraint.
  • Pragmatism: You can say 'No' when something is critical, but more importantly 'Yes, but differently' to avoid blocking the business.
  • Technical: You have experience with a public cloud provider and with microservices architectures.
  • 360° view: You are equally comfortable configuring a firewall or an EDR as you are discussing an application vulnerability with a developer.
  • Soft skills: A pedagogical approach — you enjoy mentoring and can step back to prioritize risks against business needs.
  • Nice to have: Experience with compliance topics (ISO 27001, SOC 2 or internal Information Security Policy/PSSI) is a strong asset.
Benefits
  • Swile meal vouchers: 55% of your daily meals covered by Skello.
  • Group fitness classes: To start the week well, we meet Monday evenings.
  • RTT days: 8 additional days off (10 for our Sales/BDR on hourly schedules) on top of paid leave to compensate overtime.
  • Thorough onboarding: a comprehensive program from your first week.
  • CSE "Happy Pal": a platform with a €20/month subsidy for your sports and cultural activities.
  • Inclusive parental support: 5 additional days of leave if needed, a €175 birth bonus via Sidecare, and free health insurance for your children.
  • Remote work possible: A policy adapted to each team's rhythm.
  • Central offices: Paris and Lille, in the heart of dynamic cities with easy transport links.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
microservices architecturevulnerability scanningsecret managementpenetration testingincident responseGDPR complianceencryptionanonymizationfirewall configurationEDR solution management
Soft Skills
mentoringbusiness mindsetpragmatismpedagogical approachrisk prioritizationstrategic guidanceleadershipcommunicationcollaborationproblem-solving
Certifications
ISO 27001SOC 2