Job details

Staff Cloud Security Engineer (f/m)

We're making the world of digital assets accessible and secure for everyone. Join the mission.

Founded in 2014, Ledger is the global platform for digital assets and Web3. Over 15% of the world’s crypto assets are secured through our Ledger Nanos. Headquartered in Paris and Vierzon, with offices in the UK, US, Switzerland and Singapore, Ledger has a team of more than 600 professionals developing a variety of products and services to enable individuals and companies to securely buy, store, swap, grow and manage crypto assets – including the Ledger hardware wallets line with more than 5 millions units already sold in 180 countries.

At Ledger, we embody the values that make us unique: Pragmatism, Audacity, Commitment, Trust, and Transparency. Have a look at our Origins video here.

Reporting to the Cyber Security Operations & Engineering Senior Manager, you will be a part of Ledger's Cyber Security team.

Your mission : Building and driving the cybersecurity transformation by integrating secure development practices, ensuring application security via automated scanning, and collaborating closely with the Infrastructure, Engineering, and The product security (Donjon) teams.

As Ledger is at the forefront of the Web3 space, an interest in this area and in hardware wallets is a distinct advantage. We're a rapidly moving company and need individuals who can adapt quickly to our dynamic environment.

We are looking for an experienced candidate in cybersecurity who is passionate about cloud technologies security, can work autonomously, and is eager to propose improvements to bolster the security posture of Ledger's applications, infrastructure and services.

The mission

Collaborate with the Infrastructure, the engineering and the Donjon teams to integrate security into the delivery plans, ensure early detection and mitigation of security vulnerabilities
Work closely with the Donjon, the product Security team responsible, to provide automation and tooling for product security evaluation integration in CI/CD pipeline.
Engage in proactive security practices, including penetration testing, vulnerability assessments, and Infrastructure Security (IaC) code reviews to ensure Ledger's platforms and applications are secure.
Participate in the design and implementation of security architectures, from the design to the risk assessment.
Act as the primary point of contact for any security incidents, ensuring rapid response, mitigation, and post-incident analysis.
Drive the adoption of DevSecOps culture, best practices, and methodologies across the organization, ensuring continuous security improvement.

What we're looking for

5+ years of experience in DevSecOps & automation, security assessment, and cloud-native environments.
8+ years of experience on information security
Proficiency working in Unix/Linux environments, Git, Python, Terraform, Kubernetes, AWS cloud solutions and architectures, CI/CD tools, configuration management, etc.
Hands-on experience with security tooling deployment, monitoring, and incident response.
Proven track record of cross-functional work, with the ability to collaborate effectively with various teams and stakeholders.
Excellent presentation and written communication skills.
Ability to work autonomously, deal with ambiguity, and handle high-pressure situations.

What's in it for you?

Equity: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow. Flexibility: A hybrid work policy.
Social: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
Medical: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage. Well-being: Personal development, coaching & fitness with our dedicated partners.
Vacation: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days.
High tech: Access to high performance office equipment and gadgets, including Apple products.
Transport: Ledger reimburses part of your preferred means of transportation.
Discounts: Employee discount on all our products.

We are an equal opportunity employer for all without any distinction of gender, ethnicity, religion, sexual orientation, social status, disability or age.

#LI-Hybrid #LI-RDH

Ledger Glassdoor Company Review

3.9

Ledger DE&I Review

4.2

CEO of Ledger

Pascal Gauthier

Approve of CEO

Average salary estimate

$105000 / YEARLY (est.)

min

max

$90000K

$120000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About Staff Cloud Security Engineer (f/m), Ledger

Are you ready to take on a meaningful role as a Staff Cloud Security Engineer at Ledger? Based in the vibrant city of Paris, France, you'll be joining a company that's on a mission to make digital assets accessible and secure for everyone. Here at Ledger, we're pioneers in the crypto space, ensuring over 15% of the world's crypto assets are protected through our innovative hardware wallets. In this role, you will report to the Cyber Security Operations & Engineering Senior Manager and work closely with our extraordinary Cyber Security team. Your primary mission will be to drive our cybersecurity transformation by integrating secure development practices and automating application security through proactive measures. With your wealth of experience in cloud technologies and cybersecurity, you'll collaborate with our Infrastructure, Engineering, and product security teams to enhance our security posture across applications, infrastructure, and services. You'll engage in tasks ranging from penetration testing to designing security architectures, all while maintaining a fun and supportive atmosphere where your ideas are truly valued. If you have a passion for technology and an interest in the rapid developments of the Web3 landscape, we'd love to hear from you. At Ledger, we believe in the mix of pragmatism, audacity, and trust, and we can’t wait for you to bring your unique talents and experiences to our passionate team. Join us and help shape the future of digital security!

Frequently Asked Questions (FAQs) for Staff Cloud Security Engineer (f/m) Role at Ledger

What are the key responsibilities of a Staff Cloud Security Engineer at Ledger?

As a Staff Cloud Security Engineer at Ledger, your primary responsibilities will include integrating security into delivery plans, conducting vulnerability assessments, and collaborating with the Infrastructure, Engineering, and product security teams to ensure we proactively safeguard our applications. Additionally, you will handle security incidents and drive the adoption of DevSecOps practices, aiming for continuous security enhancement.