Senior Security Analyst - Platform & Infrastructure

What if, in your next adventure, you were surrounded by people who, like you, look for an unlimited playground to explore, share, and test? You've opened the right door! As an R&D team, making sure your ideas are heard and encouraged is what we strive to do!

What You'll Do:

As a Security Analyst in the "Security Blue - Platform & Infrastructure" team, you will be at the forefront of our efforts to protect our extensive infrastructure, consisting of over 40,000 servers and a diverse technology stack spanning hybrid cloud and on-premise environments. Your role will be a blend of reactive and proactive security measures to ensure the safety and integrity of our systems.

Key Responsibilities:

• Vulnerability and Incident Management:
  
  • Engage in threat intelligence activities to detect new patterns and attacks.
  • Stay updated with CVEs (Common Vulnerabilities and Exposures) that could impact our infrastructure, and trigger response plans when necessary.
  • Respond to security incidents, coordinating responses with multiple teams, handling reporting, and managing escalations.
• Proactive Security Projects:
  
  • Lead hardening efforts across our infrastructure and platforms.
  • Support/review Platform & Infrastructure design with a security focus.
  • Develop and implement strategies and solutions to prevent incidents and vulnerabilities from impacting our systems.
• Detection Engineering:
  
  • Craft new detection mechanisms to identify anomalies and potential threats.
  • Utilize our SIEM system built on ElasticSearch for monitoring and analysis.
• Automation and Scripting:
  
  • Leverage coding skills to build automation tools and scripts to enhance security operations.

Collaboration:

• Work closely with teams managing the infrastructure and platform.
• Maintain client/provider relationships with the Security Yellow team to ensure the right tools are in place.
• Support the compliance team in their mission, providing security insights and assistance.

Who You Are:

Educational Background:

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent practical experience).

Skills and Experience:

• Experience in threat intelligence, incident response, and vulnerability management.
• Familiarity with SIEM systems, particularly ElasticSearch.
• Coding and scripting capabilities for automation (languages such as Python, Go, Bash, etc.).
• Strong analytical skills to assess and respond to security threats.
• Effective verbal and written communication skills for collaboration and reporting.

Soft Skills:

• Ability to influence without authority to drive security best practices.
• Excellent organizational skills to manage multiple tasks and incidents effectively.
• Perseverance in continuously improving security measures and tackling complex challenges.

Team Structure and Reporting:

• The security group consists of approximately 20 members, divided in 3 teams: a compliance team, a yellow and a Blue team.
• The Blue team, focused on security operations, is divided into three specialized pods: Application Security, Digital Workplace, and Platform & Infrastructure.
• This position will report to the Devlead.
• Collaborate closely with cross-functional teams managing infrastructure and platforms, and support the compliance team in their security-related tasks.

Who We Are:

Criteo is the global commerce media company that enables marketers and media owners to deliver richer consumer experiences and drive better commerce outcomes through its industry-leading Commerce Media Platform.

Why Join Us:

At Criteo, we take pride in being a caring culture and are committed to providing our employees with valuable benefits that support their physical, emotional and financial wellbeing, their interests and the important life events. We aim to create a place where people can grow and learn from each other while having a meaningful impact. We want to set you up for success in your job, and an important part of that includes comprehensive perks & benefits. Benefits may vary depending on the country where you work and the nature of your employment with Criteo. When determining compensation, we carefully consider a wide range of job-related factors, including experience, knowledge, skills, education, and location. These factors can cause your compensation to vary.