Numberly is recognized as one of the world’s leading specialists in Data Marketing, with nearly 500 employees and 8 offices worldwide, serving over 500 top-tier clients (L'Oréal, Ipsen, Groupe Seb, Moleskine, Ouigo, Maje, HSBC). By putting technology at the service of both brands and consumers, Numberly is at the heart of business growth and the drive for more responsible and relevant marketing. Numberly leverages the latest advances in data processing, analysis, and media activation in a virtuous context that combines business competitiveness with enhanced privacy and data protection.

Job Description:

The security team is part of the Infrastructure & Security division. You will join a 4-person team working on GRC (Governance, Risk, Compliance) and DevSecOps topics.

Your role will involve securing both existing and new architectures and continuously improving technical security.

Your missions:

Implementing and maintaining the operational conditions of IT security solutions

Contributing to the drafting and enforcement of IT security policies and guidelines

Supporting security audits and penetration testing

Raising awareness on security best practices among employees

Keeping up with the latest in cybersecurity technologies

Integrating security into the software development lifecycle in collaboration with other teams

Deploying and maintaining threat detection and response solutions (SIEM)

Analyzing vulnerabilities and managing/tracking security updates for systems and applications with relevant teams

Managing security incidents and developing/updating incident response plans

Designing and implementing data protection solutions with business teams

Training and supporting development and operations teams on security best practices

Automating security processes and vulnerability management

Designing and implementing identity and access management (IAM) solutions

Qualifications:

Cybersecurity: Knowledge of security principles and best practices

DevOps & SRE: Experience with Docker, Kubernetes, Ansible

Scripting & Automation: Ability to script in Python or Bash to automate security and reliability tasks

Security & Performance Testing: Experience with SAST/DAST tools and performance monitoring

CI/CD & Incident Management: Ability to integrate security into CI/CD pipelines and proactively manage incidents

Team Collaboration: Ability to work with development, operations, and SRE teams to integrate security and improve system reliability

Our stack includes:

Cloud: AWS, Azure

Automation: Ansible, Terraform

CI/CD: GitLab, ArgoCD

Virtualization: Proxmox

Containers: Kubernetes (on-premises, AWS EKS, Azure AKS)

Load-balancing: HAProxy, OpenResty (nginx), Envoy

Monitoring: Prometheus, Thanos, Kafka, Elasticsearch, Graylog

Tracing: Sentry

Languages: Python, Go

OS: Ubuntu / Debian

APIs: GraphQL, REST

Security tools and frameworks:

MDM: Intune, Kandji, Landscape

Logs: Kafka, Graylog

IDS/IPS: Falco

EDR: HarfangLab, Microsoft Defender for Endpoint

Scanning: Ivre, Burp Suite

SAST: GitLab SAST, Semgrep, etc.

KMS/PKI: HashiCorp Vault

Containers: Kyverno, Harbor

Example projects for 2025:

Enhancing alerting capabilities of our SIEM and integrating CrowdSec

Integrating an open-source WAF

Scanning Docker images for vulnerabilities

Integrating a managed external SOC

Check out some of our security-focused open-source projects:

vault-db-injector: our Kubernetes Admission Webhook for ephemeral credentials management within Kubernetes, enabling native isolation and credential rotation

python-vaultwarden: our library for automating Vaultwarden integration for 500+ employees

Additional Information:

At Numberly, we are passionate about knowledge-sharing: weekly internal talks, meetings with industry experts, and continuous learning opportunities

A fast and engaging onboarding experience via our personalized interactive learning platform; job shadowing across departments; monthly "Happy Meetings" for global team updates; and Jedi Masters to guide new hires

We value open communication and encourage all team members to help shape our company

We have a positive impact on our ecosystem through 1000mercis Impacts and contribute to the open internet and open-source community

Numberly promotes diversity and is Gender Equal by design (Gender Equity score: 97/100)

We are ISO/IEC 27001:2023 certified, recognizing our adherence to the highest information security standards

Our international team includes over 30 nationalities

Our offices are unique and vibrant: a large library, a fully equipped music studio, two cats, recycling and composting initiatives, pet-friendly spaces, and bike parking. Free tea, coffee, and infusions in every kitchen—plus occasional mystery lunches!

Theater classes, Gymlib subscriptions, sports sessions, and frequent (often costumed) parties

Occasional remote work possible

Swile meal vouchers

Numberly welcomes candidates with disabilities