Regarding the position
To join our security team in Helsinki headquarters, we are seeking a Lead Security Engineer.
In this position, you'll
Participate actively in developing and carrying out our all-encompassing security plan.
In this role, you will…
. Take the lead in safeguarding our data, internal infrastructure, and SaaS solutions while making sure that all legal and industry requirements—such as SOC 2 Type II, GDPR, and CCPA—are met.
. Integrate security best practices across the software development lifecycle by collaborating closely with development, operations, and other teams (DevSecOps).
. Integrate security best practices across the software development lifecycle by collaborating closely with development, operations, and other teams (DevSecOps).
Your daily tasks and obligations consist of
Security Architecture & Engineering: Create, put into place, and manage security measures for our internal infrastructure and SaaS platform. This entails proactively identifying and reducing security risks, designing and administering IAM policies, guaranteeing strong audit logging via SIEM, automating vulnerability and threat detection (SAST, SCA, IAC, and container image analysis), and more.
Governance & Compliance: Oversee and direct our security and compliance initiatives, making sure that industry best practices and legal requirements—such as SOC 2 Type II, GDPR, CCPA, etc.—are followed. To expedite audits and guarantee their timely completion, collaborate closely with internal teams and external auditors.
Threat Response & Incident Management: Create and enhance procedures and plans for incident response. Oversee security incident investigations and remediation activities, guaranteeing prompt resolution and reducing damage.
Team Leadership & Mentoring: Develop the technical and professional capabilities of junior security engineers by mentoring and guiding them.Cooperation and Interaction: To include security into the Software Development Life Cycle (DevSecOps), work closely with the development and operations teams. Clearly explain security threats and fixes to both technical and non-technical stakeholders, such as executives and clients.
Procurement and Security Assessments: As part of the procurement process, carry out in-depth security evaluations. In pre-sales conversations with potential customers, represent Supermetrics' security stance.
Security Culture: Promote a culture that prioritizes security by integrating security concepts into every facet of our business processes and product creation.
You should apply for this job if you have
. five or more years of information security expertise, specializing in cloud or SaaS systems (AWS or GCP preferable).
. shown expertise in implementing and overseeing security frameworks, including CIS Benchmarks, SANS Top 25, and OWASP Top 10. It is crucial to be knowledgeable about risk assessment and remedial techniques.
. proficiency in protecting Kubernetes clusters in intricate multi-cloud settings (a big advantage).
. strong background in threat modeling and Identity and Access Management (IAM).
. practical knowledge of SIEM and other security solutions.
. Experience in software development is necessary, as is mastery of at least one high-level programming language (such as Python or Go) and a thorough comprehension of safe coding techniques. Additionally needed is experience evaluating and refining source code.
. shown ability to oversee compliance initiatives, especially those involving SOC 2 or comparable frameworks.
. Outstanding interpersonal, leadership, and communication abilities. the capacity to explain intricate technical concepts to audiences that are both technical and non-technical.
. a significant commitment to building an organization-wide security culture
Extra points...
. familiarity with container security technology.
. certificates in pertinent security (e.g., CISSP, CISM, etc.).
Advantages we provide:
. competitive benefits package that includes equity
. Outstanding workspace and a home office space for employees working in our completely remote locations
. Insurance for health benefits and leisure
. A yearly expenditure of €1000 for personal education
. Allowance for sports and wellness
Location may affect the benefits. Additional details are available at supermetrics.com/careers#benefits.
Visit supermetrics.com/careers/life-at-supermetrics to see why our staff enjoys working here.Visit supermetrics.com/careers/engineering to learn more about our engineering team.
Come along with us as we transform data into a marketing superhero.
Supermetrics leads the way in data integration technology, accounting for 15% of worldwide advertising expenditures.
Over 200,000 companies use our platform to consolidate their marketing data across a network of agencies and clients, including Shopify, HubSpot, and Nestlé. We assist marketers in mastering their data and transforming it into insights that enhance company outcomes and forecast the optimal course of action. Since our establishment in 2013, we have expanded economically to serve over 750K customers and generate over 50M€ in recurring income annually.
Our team is made up of more than 360 growth-minded individuals from various backgrounds. We are a cooperative, resourceful, and multicultural team.
Trust, openness, and a strong client focus are the cornerstones of Supermetrics' operations. Being proactive and forward-thinking, we strive to lead our sector. We support one another and succeed as a team.
In addition to creating an inclusive workplace where everyone is treated fairly and with respect, we are searching for a diverse, capable, and cooperative team.
A Google t-shirt was the beginning of it all. Check out our growth narrative in its entirety at supermetrics.com/about.