In relation to the role. 
We are looking for a Lead Security Engineer to join our security team in our Helsinki headquarters. You will in this role. Engage in the active development and implementation of our comprehensive security plan. Lead the charge in protecting our data, internal systems, and SaaS solutions while ensuring compliance with all applicable laws and industry standards, including the CCPA, GDPR, and SOC 2 Type II. Work collaboratively with development, operations, and other teams to integrate security best practices across the software development lifecycle (DevSecOps).
Your daily tasks and obligations consist of...
Security Architecture & Engineering: Create, put into place, and manage security measures for our internal infrastructure and SaaS platform. This includes proactive security risk identification and mitigation, IAM policy creation and administration, robust audit logging through SIEM, vulnerability and threat detection (SAST, SCA, IAC, and container image analysis) automation, and more.
Governance & Compliance: Manage and supervise our security and compliance initiatives, ensuring adherence to legal mandates, including SOC 2 Type II, GDPR, CCPA, and others, as well as industry best practices. Closely collaborate with internal teams and external auditors to expedite audits and ensure their timely completion.
Threat Response & Incident Management: Develop and improve incident response protocols and strategies. Oversee the investigation and repair of security incidents, ensuring timely resolution and minimizing harm.
Team Guidance & Leadership: Mentor and guide junior security engineers to enhance their technical and professional skills.Collaboration and Interaction: Work collaboratively with the development and operations teams to integrate security into the Software Development Life Cycle (DevSecOps). Both technical and non-technical stakeholders, including executives and clients, should be given a clear explanation of security dangers and solutions.
Procurement and Security Assessments: 
As part of the procurement process, carry out thorough security inspections. Represent Supermetrics' security position in pre-sales discussions with prospective clients.
Security Culture: Promote a culture that prioritizes security by integrating security concepts into every facet of our business processes and product creation.
You should apply for this position if you have at least five years of experience in information security, with a focus on SaaS or cloud environments (AWS or GCP preferred); demonstrated application and management of security frameworks, including OWASP Top 10, SANS Top 25, and CIS Benchmarks; knowledge of risk assessment and remediation techniques is crucial; proficiency in protecting Kubernetes clusters in intricate, multi-cloud environments (a major plus); solid knowledge of Identity and Access Management (IAM) and threat modeling; practical experience with SIEM and other security tools.
Experience in software development is necessary, as is mastery of at least one high-level programming language (such as Python or Go) and a thorough comprehension of safe coding techniques. Additionally needed is experience evaluating and refining source code.
shown ability to oversee compliance initiatives, especially those involving SOC 2 or comparable frameworks.
Outstanding interpersonal, leadership, and communication abilities. the capacity to explain intricate technical concepts to audiences that are both technical and non-technical.
a significant commitment to building an organization-wide security culture
Extra credit: 
familiarity with container security technologies; pertinent security certifications (such as CISSP, CISM, etc.).
Benefits we offer…
. Competitive compensation package, including equity
. Excellent work equipment, and home office allowance for those working in our fully remote locations
. Health care benefit and leisure time insurance
. Annual 1000 euros of personal learning budget
. Sports and wellbeing allowance
. Benefits may vary depending on location. You’ll find more information at supermetrics.com/careers#benefits.
Hear why our team likes it here at supermetrics.com/careers/life-at-supermetrics.Get to know our Engineering team at supermetrics.com/careers/engineering.
Join us as we turn data into a super hero for marketing.
Supermetrics, which accounts for 15% of global advertising spending, is at the forefront of data integration technology.
Our platform is used by more than 200,000 businesses, such as Shopify, HubSpot, and Nestlé, to aggregate their marketing data across a network of agencies and clients. We help marketers take control of their data and turn it into insights that improve business results and predict the best course of action. Since our founding in 2013, we have grown economically to service more than 750K clients and bring in more than 50M€ in recurring revenue each year.
Over 360 growth-minded people from diverse backgrounds make up our team. Our staff is diversified, resourceful, and cooperative.
With a Google t-shirt, it all started. Supermetrics is an innovative, proactive business that aspires to dominate its sector via openness, trust, and a strong emphasis on its clients. In addition to building an inclusive workplace where everyone is treated fairly and with respect, we are searching for a diverse, capable, and cooperative team.