What would you work on ?

As a security researcher, you will identify and evaluate ideas for new products, conduct technical research, and run experiments. You are also expected to participate in the larger security community through blog posts, research papers and participation in industry conferences.

This role involves staying up-to-date with the latest security trends and techniques, as well as working closely with our development and product teams to design and implement new security features and with our marketing team to develop technical long-form content.

Context

Our typical customers are companies with hundreds of developers that are leveraging numerous services like SaaS applications, cloud infrastructures, or internal microservices and are mature on DevOps and cloud adoption.

Our products are used by different teams: Software Development and Ops teams, Application Security, Threat Response and the buying decision comes from CISOs / CTOs / Directors of Security / Head of Appsec.

Innovating in our field and showing deep expertise in cybersecurity topics is key to our success, your work will matter and will be advertised externally.

The existing team

You will work with:

Edouard Viot (VP Product) : https://www.linkedin.com/in/edouardviot/

Missions

Here are the main projects you would work on for the year to come:

• Researching and publishing on topics related to code security, providing technical expertise to other R&D teams, developing tools to support analysts in their day-to-day duties, and collecting technical artifacts about adversary activity.
• Analyzing, researching, and delving deep into technologies, tools, and products, existing and emerging, to understand how they work and how they can be utilized to build new solutions to user problems.
• Reproduce emerging vulnerabilities and provide actionable technical information.
• Author blog posts, research papers and conference presentations on topics and research in your area of expertise.
• Analyze our different datasets to extract insights that can be shared to the community

More about you

If you think you are only matching 70% to 80% of these criterias, please send us your resume !
And if you still have some questions before applying, you can directly write to us at : careers@gitguardian.com 

• Expected experience of 5+ years working in a security engineer role (Application Security, Security Operations, Security Development), with 2+ years of those dedicated to research-related work, or equivalent education.
• Have a keen eye for identifying complex security problems in software and/or infrastructure, and defining their solutions.
• Enjoy hacking things and rapidly prototyping ideas.
• Be proficient in a scripting language (Python or Go).
• Be data driven and have strong data analytics skills.
• Be a team player and like collaborating on cross-functional teams.
• Have a passion for security.
• Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics in a clear and concise manner.

Why should you join us?

• 🏡 Remote-friendly environment: up to 3 days/week for people living in Île-de-France, (almost) full-remote policy for people living elsewhere in France
• 💰 Attractive package that includes stock-options
• 🏡 Remote-friendly environment: up to 3 days/week for people living in Île-de-France, (almost) full-remote policy for people living elsewhere in France.
• 💻 Home office allowance to improve your set-up at home, and the latest technology equipment
• 🌴 Yearly holiday allowance
• 🤝 Referral bonus of 4000€ for any new Guardians we might hire thanks to yo
• 🍺 Lots of team-building activities including 1 per month for the whole company
• 🐕 Pet-friendly offices, every Guardian gets to bring their dogs

• 👊 Working on a meaningful product, we already helped more than 200k developers!
• 📈 A strong engineering culture, see this page to discover our R&D projects
• 🚀 Many opportunities for career development in the long term
• 👫 Trust & autonomy on your perimeter with a very transparent internal communication

Recruitment process

At GitGuardian, we are committed to building a diverse and inclusive workforce.

We will ask for your gender on the application page to help us understand the diversity of our applicant pool and to track our progress in attracting and hiring a diverse workforce. The information is optional and will not be disclosed to the hiring manager or the interview team and will not be considered in the hiring process. We appreciate your willingness to share this with us so that we can continue to improve our diversity and inclusion efforts.

1 Visio call with a recruiter

To discover your professional project and evaluate if there could be a mutual match

1 Team interview / interview with your future manager

To know more about yourself, present to you the team : missions, rituals, seniority level, and making sure you would be able to succeed in the following steps of the recruitment process

1 technical test / business case

To evaluate your skills for the position and project yourself into the role

1 final interview with the one of the co-founder

To explain to you our company’s vision and ambitions to the next couple of years, and make sure you are up for the position

Curious to know more about us ?

GitGuardian is a global post-series B cybersecurity startup; we've raised $44M by the end of 2021 with American and European investors including top-tier VC firms.

More than ever in 2023, we have a very solid business model with a fast-growing ARR, multi-year contracts and great customer retention rates.

Investors

• Among our early investors who saw our market value proposition, are the co-founder of GitHub, Scott Chacon, along with Docker co-founder / CTO Solomon Hykes 👀

Products

• We develop code security solutions for the DevOps generation and are a leader in the market of secrets detection & remediation.
• Our solutions are already used by hundreds of thousands of developers in all industries and GitGuardian Internal monitoring is the n°1 security app on the GitHub marketplace 🔥

Clients

• GitGuardian helps organizations find exposed sensitive information that could often lead to tens of millions of dollars in potential damage.
• We work with some of the largest IT outsourcing companies, publicly listed companies like Talend or tech companies like Datadog.
• More than 80% of our customers are in the United States.

People

• The majority of the team is based in Paris and we are growing fast, and in a sustainable way, while maintaining our core values.
• The Guardians are very knowledgeable, committed, serious, aligned with the company’s mission, and true team players : always willing to help pairs grow their skills !
• The team is diverse, come from more than 12 different nationalities and speak English regularly
• We are also very agile, remote-friendly, pet-friendly 🐕 in the office, and fun people to work with.