Join to apply for the SeniorSecurityEngineer (F/H) role at Lemonway
At Lemonway, we're revolutionizing the way marketplaces handle complex and regulated payments.
Our dedicated payment solution empowers investment platforms and B2C/B2B marketplaces across Europe, ensuring secure and compliant transactions through our SaaS API.
With €35 million raised in Series B funding in 2019, we're not just profitable today with a +104% growth in 2023 — we're on a mission to shape the future of payments in the digital economy.
The company has more than 140 LemonHeroes from 21 different nationalities.
More than 400 platforms trust Lemonway every day to collect funds and payments securely.
Our clients include Decathlon, Acer, SNCF, Eiffage, FFF (French Football Federation), among others.
Feel free to check our website for more info.
We're at an exciting growth stage, balancing speed and quality through continuous innovation and process improvements.
Join a dynamic and growing tech company!
Our Tech Culture:
Collaborative Learning
Our Squads and Tribes enable experts to refine and share best practices across teams.
We encourage pair programming and collaborative problem-solving.
Regular sharing sessions allow everyone to present and discuss technical topics.
Certified Excellence
We are PCI-DSS certified, ensuring the highest standards of payment card industry data security.
Your Mission
As part of our Infra and Security Team, you'll work alongside 7 talented members, including Infra, SRE, and Security.
Reporting directly to the Head of Infra & Security, you'll bring your expertise in services and product security, an interest in payments, and a desire to enhance your skills in managing the trust zone perimeter (signature engines, identity management services, PKI, HSM, time servers, etc.).
Key Responsibilities
Maintain the trust zone perimeter and support development and infrastructure teams, ensuring compliance with main regulations and ETSI standards.
Integrate security into the product lifecycle by collaborating with product and development teams.
Support various teams (People, Data, SRE, BusinessOps, Compliance & Risk, Payments, etc.) in integrating security into their processes.
Manage external providers for internal, technical, and certification audits.
Design, implement, and maintain security measures for our products and solutions, including network security, identity and access management, and data protection.
Conduct regular security assessments and vulnerability scans to identify and mitigate risks.
Ensure compliance with industry standards and regulations (e.g., PCI-DSS, GDPR) through collaboration with Risk and Compliance teams, supporting audits.
Manage and enforce IAM policies, roles, and permissions to ensure least privilege access.
Develop and promote security best practices among teams.
Develop and maintain incident response plans for security incidents, including root cause analysis and corrective actions.
Work closely with DevOps, IT, and other teams to embed security into deployment pipelines.
Maintain detailed security documentation.
Stay updated on security trends, threats, and technologies to enhance cloud security posture.
Candidate Profile
Minimum 5 years' experience in IT security, especially in challenging and regulated environments.
Experience with network segmentation, access control, and Security Service Edge tools.
Knowledge of Windows, Linux, and MacOS hardening.
Proficiency in shell scripting and automation tools.
Experience with incident response and forensic analysis.
Strong understanding of Security by Design, reverse engineering, and OWASP Top 10.
Extensive knowledge of hashing.
Excellent communication skills.
Strong troubleshooting skills and quick learner.
Passion for security, quality, simplicity, and performance.
Fluent in French and English.
Nice to Have
Experience in payments or regulated industries, especially related to PCI DSS, GDPR, or Swift.
Certifications like ISO 27001, NIST, SOC 2 are a plus.
Recruitment Process
Interview with TAM (external Talent Manager)
Technical assessment
Interview with CTO
Lemonway promotes diversity and encourages applications from all backgrounds, including those with disabilities.
#J-1880
- Ljbffr Lemonway Paris92210 Autre(s) Stage 0 mois
