Role Description The company is systematically building out its security and compliance function. We have already launched the SOC 2 and ISO 27001 processes on Drata, with the goal of completing them by the end of Q2. In the mid-term roadmap, we also plan to cover GDPR, HIPAA, and HITRUST. We are looking for our first dedicated DevSecOps Engineer who will take ownership of this area. Above all, we are seeking a strong, hands-on engineer, someone who can not only describe security and compliance processes but also independently implement them across infrastructure, CI/CD, Kubernetes, cloud environments, and production services. This role is not about “paper compliance”. However, working with policies, procedures, and evidence will also be an important part of the responsibility. We need someone who can connect compliance requirements to real technical controls and ensure they are properly implemented, validated, documented, and audit-ready. Qualifications - 5+ years of hands-on experience in security / DevSecOps for production infrastructure. - Direct experience with SOC 2 implementation: controls, evidence collection, audit preparation, and communication with auditors. - Ability to write security policies and procedures yourself — and implement them in a way that actually works in day-to-day operations. - Strong hands-on experience with Docker, Kubernetes, and cloud environments — GCP and/or AWS. - Strong understanding of IAM/SSO: centralized access management, provisioning/deprovisioning, and periodic access reviews. - Experience building onboarding and offboarding processes from a security and compliance perspective. - Ability to automate routine work using Python and/or Bash. - Ownership mindset: you take responsibility for a task, drive it to completion, and think one step ahead. - Friendly, non-toxic, and pleasant to work with. - Strong communication with developers: you can clearly and constructively explain your position, defend it when needed, and find common ground. - Willingness and ability to mentor, teach, and share knowledge with others. - Analytical mindset: you dig down to the root cause instead of just treating symptoms. - Proactivity: you would rather prevent an outage than heroically fight it later. - Strong attention to detail and reliability. Requirements - Experience with GDPR, HIPAA, and HITRUST — these are the next steps on our roadmap. - Experience in regulated industries such as banking, fintech, or healthcare, including customer/vendor security audits. - Experience with both on-prem and SaaS environments. - Kubernetes security tooling: Falco, OPA/Gatekeeper, Pod Security Standards, Trivy. - Experience using AI agents to automate routine tasks. - Terraform/Ansible and GitOps experience. - Experience with bug bounty or responsible disclosure programs. Responsibilities - Own Drata, controls, evidence collection, and communication with auditors. Support SOC 2 and ISO 27001, with GDPR, HIPAA, and HITRUST planned next. - Develop and maintain security policies and procedures, including Vulnerability Management, Access Control, Incident Response, Data Protection, and others. - Build onboarding, offboarding, and access review as a real process, automating it through SSO, centralized IAM, and automated provisioning/deprovisioning. - Drive SDLC security: Dependabot, CodeQL/SAST, SCA, dependency update policies, secrets management, and related controls. - Own vulnerability management: scanning, CVE triage, patching, annual penetration testing, vendor selection, coordination, and follow-up on findings. - Participate in response to critical vulnerabilities and security incidents. - Improve security observability: audit logging, change tracking, and reporting across all production platforms. - Spend around 60% of your time on the general infrastructure track: Kubernetes, deployments, monitoring, automation, and on-call. Benefits - The team has built award-winning AI products for tech corporations — devices, voice assistants, products that are actually in the world. - Cutting-edge tech stack: Speech Technologies, NLP, Generative AI (LLMs, diffusion models), voice-first agentic architecture with privacy-first and on-premises deployment. - High engineering bar and real ownership — the team cares about what actually works in production. - Fast career progression — a senior-heavy team and a high volume of real problems means you grow faster than you would anywhere else. - Startup pace with enterprise stability — real clients, real revenue, no bureaucracy. - Fully remote across Europe. - 21 vacation days + public holidays + 5 sick days. - Private English lessons via Preply.

• Own and continuously optimize our CI/CD pipelines and delivery workflows, ensuring fast feedback loops and secure deployments. • Build and evolve the local developer experience, making it seamless for engineers to spin up, test, and debug services locally across a variety of languages and frameworks. • Own and maintain part of our cloud infrastructure and container orchestration platforms using Terraform and Kubernetes. This will also require participating in identifying and solving infrastructure-related production issues and performance troubleshooting, upgrading our platforms for long-term resilience. • Be a technical referent and drive engineering standards forward by acting as a trusted partner for product engineering squads on delivery and infrastructure best practices, sharing expertise and providing guidance. • Encourage a culture of technical curiosity by frequently evaluating, benchmarking, and prototyping emerging technologies to bring the best tool sets to the team and promoting a culture of continuous learning across the organization.

Support the buildout of scalable AWS cloud infrastructure, assist with networking setup and IAM configurations, and document technical work while collaborating with architects and security teams to ensure compliance and security standards.

Role Description Dans un contexte de rationalisation du système d’information de la DILA et d’industrialisation des pratiques techniques, le pôle « Performance et automatisation » joue un rôle central dans la transformation des méthodes de travail. - Concevoir, mettre en œuvre et maintenir des pipelines de déploiement automatisés pour les applications de la DILA. - Mettre à disposition et administrer des environnements techniques (développement, qualification, préproduction, production) à destination des projets métiers et applicatifs. - Accompagner les équipes projets dans l’intégration de leurs applications, en garantissant l’interopérabilité, la sécurité et la conformité avec les règles internes. - Participer activement aux déploiements en préproduction et production, en coordination avec les équipes d’exploitation et les prestataires externes. - Formaliser et maintenir les procédures techniques et documentations associées aux déploiements et intégrations. - Contribuer à l’amélioration continue des processus d’intégration et de déploiement, dans une logique de standardisation, de sécurité et de performance. Qualifications - Niveau 7 Master/diplômes équivalents. Requirements - Mise à disposition et maintien en conditions opérationnelles du socle d’outils SysOps. - Automatisation de l’intégration applicative et de la mise en exploitation. - Suivi de la qualité de la production et support à l’exploitation. - Contribution au pilotage des chantiers techniques. Benefits - Documents à transmettre : CV et lettre de motivation obligatoires. Company Description Localisation : 26 Rue Desaix, 75015 Paris, France