CyberSecurity Team Lead – Infrastructure and Application
France
Full Time
3 hours ago
No H1B
Key skills
AnsibleCloudDockerKubernetesPythonTerraformGoBashAIMachine LearningPrismaCI/CDLeadershipCommunicationSnykSonarQubePenetration TestingCloud Security
About this role
Role Overview
- Oversee the identification, prioritization, and remediation of vulnerabilities across both On-Prem and Cloud infrastructures as well as internal applications.
- Select, deploy, and maintain the tools needed for visibility and protection, including CNAPP, CSPM, SAST/DAST, secret scanning, and SBOM/CVE tracking.
- Integrate security controls and automated gates directly into CI/CD pipelines to catch vulnerabilities before deployment (Shift Left).
- Partner with engineering teams to interpret findings and "ease the fix," providing patches, code snippets, or architectural advice to resolve issues quickly.
- Define and maintain rigorous security guidelines and best practices for developers and system administrators.
- Design and lead security awareness programs and technical training tailored for developers and admins to reduce human risk.
- Track and define key security metrics (MTTR, coverage, vulnerability density) to visualize posture and progress to leadership.
Requirements
- 6+ years of experience in Information Security, with a specific focus on Application Security, Cloud Security, or DevSecOps.
- Strong scripting skills (Python, Go, or Bash) to automate security tasks and integrate tools.
- Deep understanding of CI/CD ecosystems and container orchestration (Kubernetes/Docker).
- Hands-on experience with modern security tooling (e.g., Wiz, Snyk, SonarQube, Prisma, or similar enterprise tools).
- Collaborative mindset: you view developers as partners, not adversaries, and focus on enabling them to code securely.
- Clear communication, autonomous, and capable of translating technical security risks into actionable engineering tasks.
- It would be ideal if you also have:
- Industry certifications such as CISSP, CCSP, OSCP, or cloud-specific security certifications.
- Strong Infrastructure as Code (IaC) experience with Terraform or Ansible.
- Experience in offensive security (Penetration Testing) to better understand attacker mindsets.
- Prior experience securing large-scale AI or Machine Learning infrastructure.
Tech Stack
- Ansible
- Cloud
- Docker
- Kubernetes
- Python
- Terraform
- Go
Benefits
- 💰 Competitive salary and equity package
- 🧑⚕️ Health insurance
- 🚴 Transportation allowance
- 🥎 Sport allowance
- 🥕 Meal vouchers
- 💰 Private pension plan
- 🍼 Generous parental leave policy