This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
As the Tech Lead of IR, you will be the captain of the front-line defence. You won't just respond to threats; you will build the team and the infrastructure that detects them before they happen. You will lead a group of high-performing engineers to mature our Incident Response program, automate security operations, and partner with R&D and DevOps to ensure our "liquid software" remains secure.
Job Responsibility:
Incident Command: Act as the primary escalation point for high-priority security incidents, leading the triage, containment, and post-mortem processes
Architect Operations: Oversee the design and execution of vulnerability management, SaaS security posture (CASB), and asset management at scale
Drive Automation: Champion "Security as Code" by leading the development of internal tools (Python/Go) to automate monitoring and remediation
Cross-Functional Partnership: Collaborate with SRE, DevOps, and Product teams to drive holistic fixes for systemic architectural vulnerabilities
Evangelize Security: Build a culture of security across the organization through training, documentation, and proactive risk management
Requirements:
Leadership Experience: 1+ years of experience leading technical teams or acting as a formal mentor/technical lead in a security context
Deep Technical Roots: 7+ years of industry experience in security with a focus on Information Security principles
Cloud Mastery: Proven expertise in attack and mitigation methods within complex AWS, GCP, or Azure environments
Incident Response Prowess: Extensive experience in risk prioritization and managing the lifecycle of security incidents in a global production environment
Technical Breadth: Mastery in at least 5 of the following: Endpoint Protection (EDR/XDR) & Zero Trust architecture
Identity Management (IAM/IDM) and SSO/SAML
Security Analytics (SIEM/Logging) such as ELK or Splunk
Container Security (Docker, Kubernetes)
Email Protection & Patch Management
Coding Proficiency: Ability to review and guide the development of security tools in Python or Go
Communication: Exceptional ability to translate complex technical risks into actionable business insights for stakeholders