Senior Security Engineer

Описание вакансии

We’re looking for a Senior Security Engineer to join our Security team inHelsinki HQ.

In this role, you will…

• Work closely with product development to embed security best practices across the entire software development lifecycle and ensure security of our products.
• In collaboration with the cloud infrastructure team improve security of our cloud infrastructure by improving existing and implementing new security controls.
• Have a high level of autonomy in your daily work to improve our security posture.

Your day-to-day work and responsibilities include…

Security Engineering & Architecture: Design, implement, and maintain security controls across our SaaS platform and internal infrastructure. This includes automating vulnerability and threat detection (SAST, SCA, IAC, container image analysis), ensuring robust audit logging via SIEM, implementing and managing IAM policies, and continuously identifying and mitigating security risks.Reviews and Assessments: Do internal reviews, threat modeling and testing of new product features. Use automated tools and manual code review to find security issues in software and infrastructure.

Collaboration & Communication: Collaborate closely with development and operations teams to integrate security into the Software Development Life Cycle (DevSecOps). Champion a security-first culture, embedding security principles into all aspects of our operations and product development.

Security Automation: Improve our existing security tooling in CI / CD and add new tools. Implement automated threat detection and policy-as-code solutions to detect possible data breaches and insecure configurations.

This position is for you if you have at least…

• 3+ years of full-time experience in information security and in total at least 5 years of full-time work experience in e.g. software development.
• Expertise in securing cloud infrastructure in AWS, GCP or Azure.
• Basic knowledge of Kubernetes and securing Kubernetes clusters and containerized applications.
• Software development experience, including proficiency in at least one programming language (e.g., Python, Go, PHP) and understanding of secure coding practices, is required. Experience reviewing source code is also required.
• Experience of modern CI / CD systems (GitLab / GitHub) and implementing automated security scanning tools (SAST, SCA etc) as part of pipelines.
• Knowledge of security frameworks and standards such as OWASP ASVS, OWASP SAMM, ISO 27001, and CIS Benchmarks, and applying them to product development.
• Keen interest in promoting security in a product development organization and working in close collaboration with software and cloud engineers to improve security of our products.

Bonus points...

• Expertise in securing Kubernetes clusters in complex, multi-cloud environments (a significant plus).
• Familiarity with AI software development tools and AI security.
• Hands-on experience in configuring SIEMs, threat detection and response tooling and web application firewalls.
• Experience of incident response in cloud environments.
• Relevant technical security certifications (e.g., CISSP, SANS, etc.).

Does this sound like your next career adventure? Apply now! We'll fill the role as soon as we find the right person.

Benefits we offer…

• Attractive pay structure, including equity
• Great work equipment, and home office allowance for those working in our fully remote locations
• Annual personal learning budget
• Sports and wellness allowance

Benefits vary depending on location.

Hear why our team likes it here atsupermetrics.com/careers/life-at-supermetrics.

#LI-Remote #LI-FullTime #LI-MiddleToSeniorLevel

Supermetrics is committed to providing a welcoming and inclusive workplace for all. We believe that a diverse workforce is a strong workforce, and we are dedicated to creating an environment where everyone feels valued and respected. If you require any reasonable accommodations during the application or interview process, please do not hesitate to let us know. All requests for accommodation will be kept confidential.

Join us on our mission to make data a marketing superpower

Supermetrics builds an end-to-end marketing intelligence platform, with 15% of global advertising spend reported through our products.

We help marketers turn their data into insights that improve business results and predict the best next step. Our technology streamlines marketing data for over 200,000 businesses through a network of agencies and customers like Shopify, HubSpot, and Nestlé. Since our founding in 2013, we’ve grown from a one-person shop to a key player in the industry—and we’re just getting started!

We're a team of 400+ growth-minded people from diverse backgrounds. Together, we make a multicultural, resourceful, and collaborative team.

Supermetrics operates on trust, transparency, and a keen customer focus. Forward-looking and action-oriented, we work hard to raise the bar in our industry. As team players, we help each other and win together.

We're hiring for a diverse, skilled, and collaborative team and building an inclusive workplace where everyone is treated fairly and respectfully.

Supermetrics is committed to providing a welcoming and inclusive workplace for all. We believe that a diverse workforce is a strong workforce, and we are dedicated to creating an environment where everyone feels valued and respected.

It all started with a Google t-shirt... Read the rest of our growth story at supermetrics.com/about.