Security Engineer - GRC - Open to remote
Paris
BUREAU OF TECHNOLOGY – CYBER SECURITY /
PERMANENT CONTRACT (FULL-TIME) /
Hybrid
Back Market is the world’s leading refurbished electronics marketplace with a team of 650 people, powering operations in 21 countries (and counting!).
Named one of the World's Most Innovative Companies by Fast Company in 2019 and again in 2021, our mission is simple: empowering people to consume tech sustainably by offering folks a high quality, accessible, and more eco-friendly alternative to buying new electronics. Why? Refurbished tech helps lower our collective environmental impact. We have indeed contributed to avoid the production of more than 1,000,000 tons of CO2e worldwide since our launch in 2014.
Be part of an exciting and growing international adventure that will change the way the world consumes tech.
As a Senior Security Engineer - GRC (Governance, Risks, and Compliance) preserving Back Market's information assets is your main concern.
You contribute to the continuous improvement of the company's security posture, while keeping an eye on key risk indicators. As a domain expert and evangelist of cybersecurity best practices you share your time between advising technical and business teams, assessing risks, defining and maintaining security policies, procedures and action plans, performing audits and reviews, and monitoring compliance progress.
We have huge ambitions and aim for excellence. So we are counting on you to support and advise our teams on the cybersecurity aspects of these challenges.
Required profile :
- You are a talented engineer with at least 4 years experience of securing web services in dynamic cloud environments.
- You believe in the importance of a risk-based approach to define and maintain security objectives, policies, procedures and action plans necessary for succeeding in your mission.
- You care about explaining the rationales for the company's security choices, to ensure that colleagues understand and adopt them, and defining a security requirement without any analysis or foundation is nonsense to you.
- Best practices and standards such as the ISO/IEC 27000 series, including 27005 or EBIOS, 27017, 27018, 27035, OWASP SAMM, OWASP ASVS or CSVS, or CIS benchmarks are among your favorite references.
- You are curious, structured and enjoy exploring new methods and technologies. You are transparent in your communication and are able to find solutions with your team when you don't have an answer.
- You like to share knowledge and make your colleagues aware of good cybersecurity practices, by supporting your proposals with concrete examples and demonstrations.
- Your skills are recognized by a certification such as (ISC)² CISSP, CCSP or CSSLP, ISO 27001 Lead Implementer or Auditor, EBIOS Risk Manager, SANS GCCC - or you are ready to obtain it in the near future.
- In-depth knowledge of PCI-DSS and GDPR would be appreciated.
- You want to join a challenging technical environment: AWS, GCP, Kubernetes, Terraform, Datadog, Spinnaker, Cloudflare, etc., where you can learn, develop and grow your career.
- Great verbal and written communication skills, in English.
Recruitment process :
* Call with Yann one of our tech talent acquisition specialist
* Technical interview with members of the Cybersecurity team
* Team Fit interview with your Manager and one of your potential future coworker
* Interview with Thibaud our CEO and Co-founder
WHY SHOULD YOU JOIN US ?
- A meaningful job: you will help avoid thousands of tons of electronic waste and fight against planned obsolescence. It counts!
- A meaningful company: we became a mission-driven company in January 2022.
- Be part of a worldwide growing company based in Europe, the USA and Asia to face great challenges : you will have the freedom to innovate and adopt new ideas!
- Work alongside passionate experts: who will share their knowledge and help you develop and grow in your career.
- Grow your career: with a flexible career path and a dedicated Learning & Development team. Back Market will help you evolve with personalized internal trainings and external handpicked providers from day 1!
- Leadership Academy by Back Market:“be a coach not a dictator” is at the core of this program ! We train and enable all our leaders to support their team towards achieving goals. Be a manager at Back Market is an unique experience we take by heart.
- An attractive salary, equity and a host of benefits including : Lunch voucher, health insurance, relocation package, paid time off for activism in your community, parental benefits, flexible hours, etc…
- One Loving Tribe: you will have the opportunity to work in a fast-paced, open-minded and friendly environment.
- Be part of one of our Employee Resource Groups createdaround shared identities, common backgrounds and/or special interests crafted to be a safe space and an expressive outlet.
- Several internal events: The Monday Brief (weekly)/ The Somehands (monthly)/ The All Hands (annual).
- We’re here to SABOTAGE: It’s our mantra. It keeps us focused on what we aspire to be: a little bit sneaky, always smart, kinda frugal and constantly conspiring to create maximum impact.
Back Market is an Equal Opportunity Employer which means we pledge to not discriminate against employees based on race, color, religion, sex, national origin, age, disability or genetic information.. If reasonable accommodations are needed for the interview process, please do not hesitate to discuss this with the Talent Acquisition Team.
Back Market is helping to address one of the biggest challenges of our time: climate change. We take this so seriously that we were awarded status as a “Société à Mission”, or company with a social mission, by the French government. We know we can’t tackle a global problem without a globally representative team so we are committed to embedding diversity, equity and inclusion principles in every aspect of our organization. But more importantly, being One Loving & Free Spirited Tribe is in our DNA as it is one of the five foundational values of our company since we got started way back in 2014. We are committed to hiring and supporting diverse teams of people from all backgrounds, experiences, and perspectives. We know our lofty goals cannot be reached unless everyone has a seat at the table along with the resources and opportunity to grow.
