Security Engineer, Incidents
Helsinki, Finland
Company Description
Wolt is a Helsinki-based technology company that provides an online platform for consumers, merchants and couriers. It connects people looking to order food and other goods with people interested in selling and delivering them. To enable this, Wolt develops a wide range of technologies from local logistics to retail software and financial solutions – as well as operating its own grocery stores under the Wolt Market brand. Wolt’s products include Wolt+ (subscription service for customers), Wolt for Work (meal benefits and office deliveries for companies), Wolt Drive (fast last-mile deliveries for merchants) and Wolt Self-Delivery (service for merchant partners with their own delivery staff). Wolt’s mission is to make cities better by empowering and growing local communities. Wolt was founded in 2014 and joined forces with DoorDash in 2022. DoorDash operates in 29 countries today, 25 of which are with the Wolt product and brand.
Working in Product Development at Wolt
At Wolt, we’re about getting things done. You’ll probably enjoy it here if you like taking ownership, developing yourself and being around friendly, humble and ambitious people.
The behind the scenes of Wolt is run by an awesome bunch of over 400+ planners, builders, designers and data crunchers. We call ourselves Product+, as we’re the very core of Wolt’s products, tools and platforms. To build our products, we work in over 40 cross-functional, independent and autonomous teams. Teams are made up of a mix of talented individuals: engineers, designers, data scientists, analysts, and product leads. Each team takes ownership for solving customer problems in the best possible way.
Our Commitment to Diversity, Equity & Inclusion
We want to have all sorts of people in our team – people like you and me, and people different from you and me. To be able to work with diverse teammates – when it comes to gender, age, ethnicity, life background, sexual orientation, political views, religion, or any other personal trait – we consciously aim to offer equal opportunity for everyone to work with us. This is because we believe diverse teams make the most thought-through decisions and build things in the most inclusive way.
Join us today to build Wolt together.
#LI-AP3
Job Description
Are you a problem-solver who is capable of handling incidents both technical and non-technical? We’d love to hear from you 👀
There’s a few things that make our Security team at Wolt quite unique:
⭐️ We’re a cross-disciplinary team which makes us strong: looking after not only security but also privacy and physical security and safety
⭐️ We work across the whole company and report to the CEO office, not buried under an organizational silo
⭐️ We’re a truly Cloud Native, Zero Trust and DevOps company - so much so that we don’t usually even care about those buzzwords
The Wolt Security team is distributed across several locations, and we are looking to fill the role in Finland or Sweden.
In this role you’ll get to:
Manage security and privacy events and incidents with a full ownership of handling these from detection to root cause analysis, and potentially reporting them to authorities. This is not a SOC role: you will work as an incident manager and a hands-on responder, and not just respond to automatic alerts.
Collaborate with our Product Engineering, Operations and IT to implement the necessary immediate fixes, fix vulnerabilities and implement long-term mitigations. Some of the long-term fixes may involve changes to how we do business.
Work with our country operations, Support, product development teams, IT, Legal, and People Ops. This role doesn’t just look at “IT” or “product” issues, but any security and privacy events or incidents in any corner of Wolt. Some of them might not be “technical” incidents at all!
The position requires regular on-call duty, which is separately agreed and compensated.
Over time, your role can evolve depending on your interests and skills. Wolt is a large place and there’s a lot to do! While it is expected that practical incident management and response will take most of your time, we are keen on finding people who have supporting technical skills which they can put into good use when there’s time. Examples of such skills could be exploratory security testing, vulnerability management in software development, working with our SIEM or observability stack, or looking into the security of SaaS services we use.
This position is ideal for someone with a technical incident response background looking to expand their horizons to include less technical commotions, or a former SOC analyst who has seen it all and wants a change. We are looking for at least 2 years of full-time equivalent experience total.
Qualifications
You’ll be successful in this role if you:
Enjoy digging into a process – technical or non-technical – to find out why and how something happened.
Are quick to learn nuances in something.
Are comfortable with Linux, to the level of essential systems administration on the command line.
Are comfortable scripting your way through boring stuff, for example, in Python or bash.
Have a strong work ethic, are organized and follow things through.
Can communicate clearly and provide good visibility to issues as they progress.
Can see through issues that have many aspects and different - often also non-technical and business-related - considerations.
Have the skill of becoming friends with developers and internal legal counsels.
Are not scared of submitting and reviewing Pull Requests.
You are not afraid of getting to learn the legal requirements of the GDPR, NIS2, U.S. SEC, DORA, EBA, and the CRA, as they apply to incident reporting.
And as Wolt’s company language is English, you’d need to be fluent in both spoken and written English.
Additional Information
The position will be filled as soon as we find the right person, so make sure to apply as soon as you realize you really, really want to join us!
The compensation will be a combination of monthly pay and DoorDash RSUs. The latter makes it exceptionally easy to be excited about our company growing and doing well, as you’ll own a piece of the pie.
For any further questions about the position, you can turn to Product+ Talent Acquisition Partner - Anna Pivovar (anna.pivovar@wolt.com).
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Bash Cloud DevOps GDPR Incident response Linux NIS2 Privacy Python SaaS Scripting SIEM SOC Vulnerabilities Vulnerability management Zero Trust
Perks/benefits: Equity / stock options Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open SQL-related jobs
- Open PowerShell-related jobs