Vulnerability Security Engineer
Paris, France
MANGOPAY
Modular payment infrastructure for marketplaces and platforms. Select and connect the products you need to succeed.Company Description
MANGOPAY’s mission is to shape the future of exchanges!
We empower all marketplaces and platforms by providing them with powerful and flexible payment and regulatory solutions. Since 2013, we have accelerated the success of some of the biggest names in e-commerce, retail, and cutting-edge platforms like Vinted, Rakuten, Chrono24, La Redoute, Wallapop and 2,500 + more.
Our team of over 250 talents is spread across Europe, with main offices in Paris and Luxembourg. Marketplaces and fintechs are thriving and we are looking for outstanding profiles to tackle some of the most ambitious challenges in our field and contribute to our robust growth. We are proud of our diversity and are committed to employee well-being, inclusion and equal opportunity. Working at MANGOPAY means joining a dynamic, flexible and fast-growing organization.
We just raised €75 Million with Advent International, one of the most experienced private equity investors, to scale our vision globally. It’s time to join the adventure!
Job Description
As Mangopay is accelerating throughout its growth stage, we’re looking to onboard a senior vulnerability management engineer with deep technical security knowledge base.
The candidate would have proven experience in a similar capacity, though not necessarily in the same industry. They would have to feel comfortable in a cross-functional environment, dynamic and complex.
An individual security expert with a passion finding the needle in the haystack, identifying security loopholes and exploitable vulnerabilities through code and network.
This position can be filled in one of our offices: Paris, Luxembourg, London, Berlin, Madrid, Milan, etc.
Key Responsibilities:
As a vulnerability security engineer, you will be responsible for the timely and accurate detection of vulnerabilities across all Mangopay products and internal corporate security.
Qualifications
- +5 years of work experience in information security field, with at least 3+ years relevant experience working with Threat and Vulnerability Management tools such as Qualys, Tenable
- Technical security background (netsec, cryptography, authentication, authorization and security protocols), reverse malware engineering
- Advocate for security and infuse secure OPS culture into Tech OPS (patching cadence, 2FA, configuration management)
- OWASP guru, Metasploit, FIM experience
- Experience analyzing risk and prioritization of vulnerabilities, validating vulnerability reports and driving remediation
- Analyze public and private vulnerability disclosures and exploit code
- Author and validate safe, scaleable, and accurate vulnerability detection mechanisms
- Understanding of the overall threat and vulnerability management process, including metrics to measure performance
- Experience with troubleshooting and performing false positive analysis for both infrastructure and application layer vulnerabilities ensuring exploitability of identified vulnerabilities
- Knowledge of AWS Cloud Security principles
- Results oriented, high energy, self-motivated
- Certifications such as SEC460, GIAC GEVA or other SANS
Additional Information
- HR Call
- Technical interview with our VP Information Security
- Interview with the IT Ops team
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AWS Cloud Cryptography E-commerce Exploit GIAC Malware Metasploit OWASP Qualys SANS Vulnerabilities Vulnerability management
Perks/benefits: Flex hours Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open CI/CD-related jobs