Writing.io Jobs

Find the best remote jobs. Answer a few questions and we'll deploy a powerful assistant to help you search, create alerts, and more.

1 What roles are you open to?

2 Experience level

3 Work style

Did you know? If memory is enabled, Writing.io can remember your job search preferences and help you to improve your resume, craft customized outreach and more.

Security Public Facing Security Researcher at CertiK

Public-facing security researcher who conducts Web3 audits and penetration testing while representing CertiK at conferences and on social media.

Mid Remote Posted about 4 hours ago RemoteFirstJobs Product
What this role involves

About the Company

Born from groundbreaking research at Columbia University and Yale University, CertiK is a leading Web3 security company focused on securing blockchain protocols, smart contracts, and decentralized applications through cutting-edge security research, formal verification, and AI-powered technology. Founded in 2017 and headquartered in New York City, CertiK provides end-to-end security solutions including smart contract audits, penetration testing, on-chain monitoring, incident response, and compliance services for some of the largest projects in the digital asset ecosystem.

Today, CertiK supports thousands of enterprise clients and Web3 projects globally, with a distributed international team spanning North America, Asia, and Europe. The company is backed by leading investors including Coatue, Goldman Sachs, Insight Partners, and Sequoia Capital, and has been recognized by organizations such as the World Economic Forum and CB Insights for its contributions to blockchain security innovation.

About This Role

This role is for a Web3 security researcher who can act as a public face for CertiK. This means having a strong social media presence, speaking at conferences, and being openly helpful to the wider security community. This doesn’t mean you have to have tens of thousands of followers on X, but you do need to be comfortable interacting with the general public. The specific type of security researcher is flexible - contract/chain auditors, pen testers, engineers, and multi-talented individuals can apply. This is a great role for a generalist.

Responsibilities

  • Work closely with the Web3 Task Force Team to create stronger connections to the blockchain ecosystem.

  • Speak at conferences about your area of expertise on behalf of CertiK.

  • Complete interviews about various Web3 security topics.

  • Perform tasks cross-functionally among the various teams at CertiK.

  • Support the marketing and feedback collection of CertiK’s products and services.

Requirements

  • 3+ years of experience in the Web3 space.

  • Strong social media presence and high visibility.

  • Experience speaking at conferences or in front of large audiences.

  • Strong technical skills in the areas of web3 security or related fields.

Bonus Points

  • Large number of social media followers.

  • Previous experience being the public face of an organization.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses and identifying potential inconsistencies or verification signals in application materials based on available information. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Read the full description
Security Public Facing Security Researcher at CertiK

Conducts Web3 security research while serving as a public-facing expert through conference speaking, social media engagement, and community outreach.

Mid Remote Posted about 4 hours ago RemoteFirstJobs Product
What this role involves

About the Company

Born from groundbreaking research at Columbia University and Yale University, CertiK is a leading Web3 security company focused on securing blockchain protocols, smart contracts, and decentralized applications through cutting-edge security research, formal verification, and AI-powered technology. Founded in 2017 and headquartered in New York City, CertiK provides end-to-end security solutions including smart contract audits, penetration testing, on-chain monitoring, incident response, and compliance services for some of the largest projects in the digital asset ecosystem.

Today, CertiK supports thousands of enterprise clients and Web3 projects globally, with a distributed international team spanning North America, Asia, and Europe. The company is backed by leading investors including Coatue, Goldman Sachs, Insight Partners, and Sequoia Capital, and has been recognized by organizations such as the World Economic Forum and CB Insights for its contributions to blockchain security innovation.

About This Role

This role is for a Web3 security researcher who can act as a public face for CertiK. This means having a strong social media presence, speaking at conferences, and being openly helpful to the wider security community. This doesn’t mean you have to have tens of thousands of followers on X, but you do need to be comfortable interacting with the general public. The specific type of security researcher is flexible - contract/chain auditors, pen testers, engineers, and multi-talented individuals can apply. This is a great role for a generalist.

Responsibilities

  • Work closely with the Web3 Task Force Team to create stronger connections to the blockchain ecosystem.

  • Speak at conferences about your area of expertise on behalf of CertiK.

  • Complete interviews about various Web3 security topics.

  • Perform tasks cross-functionally among the various teams at CertiK.

  • Support the marketing and feedback collection of CertiK’s products and services.

Requirements

  • 3+ years of experience in the Web3 space.

  • Strong social media presence and high visibility.

  • Experience speaking at conferences or in front of large audiences.

  • Strong technical skills in the areas of web3 security or related fields.

Bonus Points

  • Large number of social media followers.

  • Previous experience being the public face of an organization.

We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses and identifying potential inconsistencies or verification signals in application materials based on available information. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.

Read the full description
Security Cybersecurity Engineer II

Implements, operates, and improves cybersecurity capabilities for enterprise clients as a hands-on technical contributor.

Mid Posted 2 days ago Himalayas
What this role involves
The Cybersecurity Engineer II (L2) is a hands-on technical contributor responsible for implementing, operating, and improving client’s cybersecurity capabilities across a rapidly growing enterprise.
Read the full description
Security Cloud Security Analyst

Analyzes cloud infrastructure security, identifies vulnerabilities, and implements security controls to protect hospitality platform systems and customer data.

Mid Posted 3 days ago Jobicy AI
What this role involves
What Makes Us Unique At Cloudbeds, we’re not just building software, we’re transforming hospitality. Our intelligently designed platform powers properties across 150 countries, processing billions in bookings annually. From independent...
Read the full description
Security Offensive Security Engineer

Proactively tests and identifies vulnerabilities across external perimeter, VPS, physical infrastructure, and endpoint defenses to strengthen offensive security posture.

Mid Posted 4 days ago Jobicy AI
What this role involves
About the roleMission Strengthen Sporty’s offensive security posture by proactively testing and identifying vulnerabilities across our external perimeter, standalone virtual private servers (VPS), physical office infrastructure, and endpoint defenses. The...
Read the full description
Security Security Engineer, Detection Response at Vercel

Monitors security alerts, maintains SIEM infrastructure, handles incidents, and builds detections to protect Vercel's internal systems and compliance posture.

Mid Hybrid Posted 5 days ago RemoteFirstJobs Product
What this role involves

About Vercel:

Vercel is the agentic infrastructure company. We free people and agents to ship what’s next.

For more than a decade, Vercel has shaped how the web is built. As the team behind Next.js, v0, and AI SDK, we create products that help builders move from idea to production with speed, security, and exceptional developer experience.

Now, software is entering a new era, and the next generation of products will not just be used by people. They will be built, extended, and operated by agents.

We are building the platform for that future, trusted by companies like OpenAI, PayPal, Ramp, Supreme, and millions of developers worldwide. Whether you’re building our products, supporting our customers, growing our community, or shaping our story, you’ll help define what comes next.

About the Role:

We are looking for a Security Engineer to join our Detection Response team. In this role, you will be responsible for managing Vercel’s internal Corporate Security (CorpSec) posture, monitoring for security anomalies, building additional detections and visibility mechanisms, and ensuring the overall security of our internal systems. You will work closely with various teams to support audits, optimize visibility, and handle security incidents as they arise.

If you’re based within a pre-determined commuting distance of one of our offices (SF, NY, London, or Berlin), the role includes in-office anchor days on Monday, Tuesday, and Friday. If you’re located beyond that distance, the role is fully remote. For location-specific details, please connect with our recruiting team.

What You Will Do:

  • Monitor and respond to security alerts across multiple channels, including managed SOC escalations.
  • Maintain visibility and logging infrastructure, ensuring effective SIEM (Security Information and Event Management) operations.
  • Support security audits for PCI, SOC2, ISO, and other compliance frameworks, gathering evidence and collaborating with Engineering, GRC and the broader Security Division.
  • Proactively enhance security operations by developing and deploying new detections, security tooling and rigorously managing key security partners.
  • Work on security investigations, incidents, and urgent requests as they arise, as well as contributing to the build-out and continuous improvement of the on-call process to enhance efficiency and effectiveness.
  • Continuously act as a guardian to enable the business to navigate risk-based changes.
  • Manage and enhance email security, endpoint security posture (EDR, configuration, and management), GitHub administration best practices, and internal security tooling to strengthen Vercel’s overall security framework

About You:

  • Extensive experience in security operations, including SIEM management, security logging, and detection engineering.
  • Strong knowledge of AWS infrastructure and cloud security best practices.
  • Experience with GitHub administration and security controls.
  • Proficiency in SQL for data analysis and security investigations.
  • Hands-on experience with incident response, including detection, triage, and remediation.
  • Strong endpoint management skills across multiple operating systems (Mac, Windows, Linux).
  • Proficiency in at least one scripting language (Python, Bash) and one compiled language (Rust, Go).
  • Familiarity with serverless functions and API security is a plus.

Bonus If You:

  • Have experience working with managed SOC providers and security automation platforms.
  • Have worked in high-growth, cloud-native environments with a focus on scalability.
  • Are comfortable working in a fast-paced environment with shifting priorities.

Benefits:

  • Competitive compensation package, including equity.
  • Inclusive Healthcare Package.
  • Learn and Grow - we provide mentorship and send you to events that help you build your network and skills.
  • Flexible Time Off.
  • We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed.

The San Francisco, CA base pay range for this role is $208,000-$312,000. This salary range is an estimate. Actual salary will be based on job-related skills, experience, and location. The total compensation package also includes benefits and equity-based compensation. Your recruiter can share more about the specific pay range for your location during the hiring process.

Vercel is committed to fostering and empowering an inclusive community within our organization. We do not discriminate on the basis of race, religion, color, gender expression or identity, sexual orientation, national origin, citizenship, age, marital status, veteran status, disability status, or any other characteristic protected by law. Vercel encourages everyone to apply for our available positions, even if they don’t necessarily check every box on the job description.

Read the full description
Security GRC Expert at Public Group

GRC Expert manages cybersecurity governance, risk, and compliance programs, conducts assessments, and maintains compliance posture across security, privacy, and third-party risk frameworks.

Mid Hybrid Posted 5 days ago RemoteFirstJobs Product
What this role involves

The organization

Why Join Us? It’s More Than a Job in Retail, It’s Your Story.

At Public Group, we believe in the power of our people in a sustainable way. That’s why we’re not just focused on what you do, but who you become. We’re committed to fueling your growth, because when you win, we all win. Imagine a place where you feel supported, valued, and empowered to make a real difference.  A place where you can build a career you love, to leave your mark in our story!

Public Group strategically invests to create an ecosystem of innovative scaleups around its Omnichannel Retail business, with the objective to provide exciting customer experiences and foster Entrepreneurship in Greece. We bring together technology, talent & entrepreneurship to create value in the Greek market. Our role is to help our subsidiaries or investee companies grow and their founders to succeed through capital and creative synergies. Our investment portfolio includes Public-MediaMarkt, iRepair, Douleutaras.gr, PublicNEXT, Venture Friends.

PublicNEXT leads the digital transformation of retail, with solutions to reimagine processes, integrate technologies and introduce innovative services or platforms that transform employee and customer experience. We develop and unleash the best technology solutions that shape the future of retail. Our team of software developers, engineers, digital and IT experts combine strong technical skills and entrepreneurial thinking to help organizations stay ahead.

As future-ready innovators, we engage in multiple projects and create growth opportunities for everyone to find what they are looking for. Together we can reimagine retail and unleash the best technology platforms to create new capabilities for people and inspire them to enjoy life. We grow by continuously developing on each other’s ideas.

Let’s grow together.

#LI-Hybrid

At Publicnext, we are strengthening our cybersecurity governance, risk, and compliance (GRC) function and looking for a GRC Expert to join the team. Working closely with and reporting directly to the CISO, you will help us mature our risk management and resilience across cybersecurity, privacy, business continuity, AI compliance, and third-party risk.

This is a hands-on delivery role with real ownership. You will run assessments, maintain our risk and compliance posture against recognized frameworks, and support the growing intersection of GRC and IT contract management, reviewing business terms, shaping governance and SLAs, and ensuring our internal and third-party arrangements meet our standards.

Responsibilities:

  • Develop and maintain cybersecurity policies, standards, and procedures aligned to recognized frameworks and regulations (NIST CSF, GDPR, NIS2, PCI DSS, EU AI Act).

  • Facilitate cybersecurity and technology risk assessments; maintain risk registers and track remediation activities to closure.

  • Participate in risk assessments, vulnerability assessments, and gap analyses, and translate findings into practical improvement plans.

  • Support compliance initiatives including DPIAs, TPRAs (Third-Party Risk Assessments), and EU AI Act readiness.

  • Coordinate and support internal and external audits and Cyber Insurance audits.

  • Oversee third-party cybersecurity risk management processes, ensuring internal teams and vendors adhere to our standards.

  • Review contracts’ business terms and highlight areas for improvement.

  • Contribute to the design of governance and SLAs for contract management.

  • Support the legal and partner interface on contracts, NDAs, and Technical & Organizational Measures (TOMs).

  • Take ownership of delivery within your assigned workstreams and deliverables, ensuring quality and timely execution.

  • Participate in the project management of ongoing GRC engagements.

  • Provide time and effort estimates for prospective engagements and contribute to the technical writing of proposals and offers.

  • Facilitate training sessions and workshops to drive cybersecurity awareness across the organization.

  • Communicate clearly with technical specialists, business leaders, and legal/compliance stakeholders.

Requirements:

  • 3+ years of experience in cybersecurity, information security, compliance, or GRC-related functions.
  • Solid understanding of cybersecurity frameworks and regulatory requirements (NIST CSF, GDPR, NIS2, PCI DSS, EU AI Act).
  • Experience supporting audits, assessments, and control-maturity activities.
  • Familiarity with IT project management principles and related methodologies.
  • Experience with or exposure to IT contract management (reviewing terms, SLAs, governance).
  • Strong analytical and problem-solving abilities.
  • Ability to communicate technical and cyber-risk concepts to both technical and non-technical audiences, including executives.
  • Strong stakeholder management and cross-functional collaboration skills.
  • A team player who supports and helps drive common goals.
  • Languages: Greek and English (both required, written and spoken).
  • Professional certifications such as ISO 27001 Lead Auditor (ISO27001-LA), CISM, CISA, or similar.
  • Experience working within regulated environments.
  • Prior exposure to Contract Management roles or IT business-facing roles.

What we offer:

  • 💼 Competitive compensation & benefits package
  • 💰 Performance-based bonus scheme
  • 🧑‍⚕️ Comprehensive life & health insurance
  • 🏡 Flexible hybrid working model – to support your work-life balance
  • 🧡 Psychological support via a professional helpline for you and your family
  • 🚀 Career growth opportunities in a role that evolves with you
  • 🎉 Valuable experience in a well-known and fast-growing organization
  • 📚 Continuous learning and upskilling through tailored programs
  • 🏃🏽‍♂️ Employee Wellness Program – office Pilates & sports teams (padel, football, volleyball & more)
  • 🚗 Alternative transportation with company shuttle buses to our offices
  • 📲 Exclusive access to our employee app, OrangeGen, packed with tools, news & perks

What Does OrangeGen Offer? 🔗 Connect: Engage with your colleagues and management seamlessly, ensuring you’re always in the loop and part of our dynamic community.

🎉 Recognize: Celebrate achievements and milestones with a culture of recognition that boosts morale and fosters a positive work environment.

🏆 Custom Rewards: Enjoy personalized rewards and kudos, tailored to recognize your unique contributions and achievements.

Are you ready to be the next #OrangeGen maker?

Orange Gen, is our team of 2.200 people who are committed to cultivating an innovative retailtainment environment, supporting continuous development, and embracing flexibility—all while placing customer centricity at the forefront. We believe in fostering a culture that values your contributions, boosts your ambitions, and supports personal and professional growth. “Joy at Public” is our main motto which lies in creating a workplace where every individual is empowered to excel and evolve, always keeping the customer at the heart of our endeavors. We like to share our moments under the #OrangeTeam celebrating all team’s achievements and Orange Marks Stories!

All applications will be treated with the strictest confidentiality.

Read the full description
Security GRC Expert at Public Group

GRC Expert manages cybersecurity governance, risk, and compliance frameworks while reporting to the CISO and conducting security assessments.

Mid Hybrid Posted 5 days ago RemoteFirstJobs Product
What this role involves

The organization

Why Join Us? It’s More Than a Job in Retail, It’s Your Story.

At Public Group, we believe in the power of our people in a sustainable way. That’s why we’re not just focused on what you do, but who you become. We’re committed to fueling your growth, because when you win, we all win. Imagine a place where you feel supported, valued, and empowered to make a real difference.  A place where you can build a career you love, to leave your mark in our story!

Public Group strategically invests to create an ecosystem of innovative scaleups around its Omnichannel Retail business, with the objective to provide exciting customer experiences and foster Entrepreneurship in Greece. We bring together technology, talent & entrepreneurship to create value in the Greek market. Our role is to help our subsidiaries or investee companies grow and their founders to succeed through capital and creative synergies. Our investment portfolio includes Public-MediaMarkt, iRepair, Douleutaras.gr, PublicNEXT, Venture Friends.

PublicNEXT leads the digital transformation of retail, with solutions to reimagine processes, integrate technologies and introduce innovative services or platforms that transform employee and customer experience. We develop and unleash the best technology solutions that shape the future of retail. Our team of software developers, engineers, digital and IT experts combine strong technical skills and entrepreneurial thinking to help organizations stay ahead.

As future-ready innovators, we engage in multiple projects and create growth opportunities for everyone to find what they are looking for. Together we can reimagine retail and unleash the best technology platforms to create new capabilities for people and inspire them to enjoy life. We grow by continuously developing on each other’s ideas.

Let’s grow together.

#LI-Hybrid

At Publicnext, we are strengthening our cybersecurity governance, risk, and compliance (GRC) function and looking for a GRC Expert to join the team. Working closely with and reporting directly to the CISO, you will help us mature our risk management and resilience across cybersecurity, privacy, business continuity, AI compliance, and third-party risk.

This is a hands-on delivery role with real ownership. You will run assessments, maintain our risk and compliance posture against recognized frameworks, and support the growing intersection of GRC and IT contract management, reviewing business terms, shaping governance and SLAs, and ensuring our internal and third-party arrangements meet our standards.

Responsibilities:

  • Develop and maintain cybersecurity policies, standards, and procedures aligned to recognized frameworks and regulations (NIST CSF, GDPR, NIS2, PCI DSS, EU AI Act).

  • Facilitate cybersecurity and technology risk assessments; maintain risk registers and track remediation activities to closure.

  • Participate in risk assessments, vulnerability assessments, and gap analyses, and translate findings into practical improvement plans.

  • Support compliance initiatives including DPIAs, TPRAs (Third-Party Risk Assessments), and EU AI Act readiness.

  • Coordinate and support internal and external audits and Cyber Insurance audits.

  • Oversee third-party cybersecurity risk management processes, ensuring internal teams and vendors adhere to our standards.

  • Review contracts’ business terms and highlight areas for improvement.

  • Contribute to the design of governance and SLAs for contract management.

  • Support the legal and partner interface on contracts, NDAs, and Technical & Organizational Measures (TOMs).

  • Take ownership of delivery within your assigned workstreams and deliverables, ensuring quality and timely execution.

  • Participate in the project management of ongoing GRC engagements.

  • Provide time and effort estimates for prospective engagements and contribute to the technical writing of proposals and offers.

  • Facilitate training sessions and workshops to drive cybersecurity awareness across the organization.

  • Communicate clearly with technical specialists, business leaders, and legal/compliance stakeholders.

Requirements:

  • 3+ years of experience in cybersecurity, information security, compliance, or GRC-related functions.
  • Solid understanding of cybersecurity frameworks and regulatory requirements (NIST CSF, GDPR, NIS2, PCI DSS, EU AI Act).
  • Experience supporting audits, assessments, and control-maturity activities.
  • Familiarity with IT project management principles and related methodologies.
  • Experience with or exposure to IT contract management (reviewing terms, SLAs, governance).
  • Strong analytical and problem-solving abilities.
  • Ability to communicate technical and cyber-risk concepts to both technical and non-technical audiences, including executives.
  • Strong stakeholder management and cross-functional collaboration skills.
  • A team player who supports and helps drive common goals.
  • Languages: Greek and English (both required, written and spoken).
  • Professional certifications such as ISO 27001 Lead Auditor (ISO27001-LA), CISM, CISA, or similar.
  • Experience working within regulated environments.
  • Prior exposure to Contract Management roles or IT business-facing roles.

What we offer:

  • 💼 Competitive compensation & benefits package
  • 💰 Performance-based bonus scheme
  • 🧑‍⚕️ Comprehensive life & health insurance
  • 🏡 Flexible hybrid working model – to support your work-life balance
  • 🧡 Psychological support via a professional helpline for you and your family
  • 🚀 Career growth opportunities in a role that evolves with you
  • 🎉 Valuable experience in a well-known and fast-growing organization
  • 📚 Continuous learning and upskilling through tailored programs
  • 🏃🏽‍♂️ Employee Wellness Program – office Pilates & sports teams (padel, football, volleyball & more)
  • 🚗 Alternative transportation with company shuttle buses to our offices
  • 📲 Exclusive access to our employee app, OrangeGen, packed with tools, news & perks

What Does OrangeGen Offer? 🔗 Connect: Engage with your colleagues and management seamlessly, ensuring you’re always in the loop and part of our dynamic community.

🎉 Recognize: Celebrate achievements and milestones with a culture of recognition that boosts morale and fosters a positive work environment.

🏆 Custom Rewards: Enjoy personalized rewards and kudos, tailored to recognize your unique contributions and achievements.

Are you ready to be the next #OrangeGen maker?

Orange Gen, is our team of 2.200 people who are committed to cultivating an innovative retailtainment environment, supporting continuous development, and embracing flexibility—all while placing customer centricity at the forefront. We believe in fostering a culture that values your contributions, boosts your ambitions, and supports personal and professional growth. “Joy at Public” is our main motto which lies in creating a workplace where every individual is empowered to excel and evolve, always keeping the customer at the heart of our endeavors. We like to share our moments under the #OrangeTeam celebrating all team’s achievements and Orange Marks Stories!

All applications will be treated with the strictest confidentiality.

Read the full description
Security Security Engineer, Detection Response at Vercel

Monitor security alerts, maintain SIEM infrastructure, respond to incidents, and develop detections to protect internal corporate systems and compliance posture.

Mid Hybrid Posted 5 days ago RemoteFirstJobs Product
What this role involves

About Vercel:

Vercel is the agentic infrastructure company. We free people and agents to ship what’s next.

For more than a decade, Vercel has shaped how the web is built. As the team behind Next.js, v0, and AI SDK, we create products that help builders move from idea to production with speed, security, and exceptional developer experience.

Now, software is entering a new era, and the next generation of products will not just be used by people. They will be built, extended, and operated by agents.

We are building the platform for that future, trusted by companies like OpenAI, PayPal, Ramp, Supreme, and millions of developers worldwide. Whether you’re building our products, supporting our customers, growing our community, or shaping our story, you’ll help define what comes next.

About the Role:

We are looking for a Security Engineer to join our Detection Response team. In this role, you will be responsible for managing Vercel’s internal Corporate Security (CorpSec) posture, monitoring for security anomalies, building additional detections and visibility mechanisms, and ensuring the overall security of our internal systems. You will work closely with various teams to support audits, optimize visibility, and handle security incidents as they arise.

If you’re based within a pre-determined commuting distance of one of our offices (SF, NY, London, or Berlin), the role includes in-office anchor days on Monday, Tuesday, and Friday. If you’re located beyond that distance, the role is fully remote. For location-specific details, please connect with our recruiting team.

What You Will Do:

  • Monitor and respond to security alerts across multiple channels, including managed SOC escalations.
  • Maintain visibility and logging infrastructure, ensuring effective SIEM (Security Information and Event Management) operations.
  • Support security audits for PCI, SOC2, ISO, and other compliance frameworks, gathering evidence and collaborating with Engineering, GRC and the broader Security Division.
  • Proactively enhance security operations by developing and deploying new detections, security tooling and rigorously managing key security partners.
  • Work on security investigations, incidents, and urgent requests as they arise, as well as contributing to the build-out and continuous improvement of the on-call process to enhance efficiency and effectiveness.
  • Continuously act as a guardian to enable the business to navigate risk-based changes.
  • Manage and enhance email security, endpoint security posture (EDR, configuration, and management), GitHub administration best practices, and internal security tooling to strengthen Vercel’s overall security framework

About You:

  • Extensive experience in security operations, including SIEM management, security logging, and detection engineering.
  • Strong knowledge of AWS infrastructure and cloud security best practices.
  • Experience with GitHub administration and security controls.
  • Proficiency in SQL for data analysis and security investigations.
  • Hands-on experience with incident response, including detection, triage, and remediation.
  • Strong endpoint management skills across multiple operating systems (Mac, Windows, Linux).
  • Proficiency in at least one scripting language (Python, Bash) and one compiled language (Rust, Go).
  • Familiarity with serverless functions and API security is a plus.

Bonus If You:

  • Have experience working with managed SOC providers and security automation platforms.
  • Have worked in high-growth, cloud-native environments with a focus on scalability.
  • Are comfortable working in a fast-paced environment with shifting priorities.

Benefits:

  • Competitive compensation package, including equity.
  • Inclusive Healthcare Package.
  • Learn and Grow - we provide mentorship and send you to events that help you build your network and skills.
  • Flexible Time Off.
  • We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed.

The San Francisco, CA base pay range for this role is $208,000-$312,000. This salary range is an estimate. Actual salary will be based on job-related skills, experience, and location. The total compensation package also includes benefits and equity-based compensation. Your recruiter can share more about the specific pay range for your location during the hiring process.

Vercel is committed to fostering and empowering an inclusive community within our organization. We do not discriminate on the basis of race, religion, color, gender expression or identity, sexual orientation, national origin, citizenship, age, marital status, veteran status, disability status, or any other characteristic protected by law. Vercel encourages everyone to apply for our available positions, even if they don’t necessarily check every box on the job description.

Read the full description
Security Information Security Analyst

Monitors and analyzes security threats, manages vulnerability assessments, and implements security controls to protect organizational systems and data.

Mid Posted 5 days ago Himalayas
What this role involves
About the jobMercor connects elite creative and technical talent with leading AI research labs.
Read the full description
Security Offensive Security Engineer

Conducts security testing, perimeter monitoring, and reconnaissance across external domains, websites, and IP infrastructure.

Mid Posted 5 days ago Himalayas
What this role involves
Role OverviewThe Offensive Security Engineer owns the security testing, continuous perimeter monitoring, and reconnaissance across all Sporty Group external domains, websites, public IP blocks, and DNS configurations.
Read the full description
Security Security Engineer - Full Remote (France) or Hybrid at Voyage PrivĂŠ

Security Engineer embeds security practices across product development, designs secure architectures, and builds automated security guardrails into CI/CD pipelines while advising engineering teams.

Mid Remote Posted 6 days ago RemoteFirstJobs Product
What this role involves

Company Description

✨ About Voyage Privé

Born in France in 2006, Voyage Privé has grown from an ambitious startup into becoming the Europe’s leading travel tech platform. Operating across 9 markets with tens of millions of users, we’re not just another e-commerce success story - we’re a tech powerhouse revolutionizing online travel.

What makes us unique? A mission-driven culture where performance meets impact. Our innovative campus brings together tech talent, professional athletes, students, and artists, creating an ecosystem where digital innovation drives both business growth and positive change.

We’re now at an inflection point, upgrading our entire technical foundation with cloud architecture, AI, and real-time systems to become a reference and top-of-mind platform for luxury travel, known by travelers for its for excellent offer and customer experience, and by our providers as a high-performance business development partner.

Job Description

🎯 Your Mission

As a Security Engineer, you’ll play a key role in shaping the security and resilience of Voyage Privé’s technology platform.

You’ll work closely with Engineering, Product, and Platform teams to embed security practices into every stage of product development, deliver measurable impact, and help us scale efficiently while maintaining a strong security posture.

You’ll have the opportunity to build many security foundations from scratch — from internal tooling to CI/CD guardrails — and influence key architectural and technical decisions as we redesign our platform for scale.

Your key responsibilities will include:

  • Strengthen the security posture across products, data and infrastructure: secure coding practices, code reviews, threat modeling, vulnerability remediation, cloud, and network hardening.
  • Develop automated security guardrails integrated into CI/CD pipelines (SAST, SCA, secrets scanning).
  • Design secure architectures for applications, APIs, data flows, and integrations in partnership with engineering teams.
  • Secure hybrid environments combining virtual machines, containerized workloads, and cloud-native services, ensuring consistent security standards across the entire platform.
  • Drive proactive risk identification through continuous scanning, threat modeling sessions, risk assessments, and architecture reviews.
  • Enable engineering teams to build secure-by-design practices by acting as a trusted advisor, developing internal tools, and leading security awareness sessions.
  • Operational security & incident readiness: participate in on-call rotations, investigate security events, and improve incident response workflows.
  • Lead security improvement projects: build automation, enhance tools, optimize processes, and foster a culture of security ownership.

Qualifications

💡 What We’re Looking For

We’re looking for builders who move fast, think big, and care deeply about creating impact that lasts

Your profile:

  • 5–7 years of experience in software engineering, security engineering, DevSecOps, or equivalent technical security roles.
  • Strong development background (Python, Node.js, Java, Go, PhP or similar).
  • Hands-on experience with modern CI/CD systems (GitHub Actions, GitLab, Jenkins).
  • Solid understanding of cloud security principles (AWS, GCP, Azure).
  • Experience securing both virtualized systems (VMs) and containerized workloads.
  • Strong knowledge of secure coding, OWASP Top 10, and application security fundamentals.
  • Experience with SAST, SCA, container/IaC scanning, runtime security tools, IAM, and secrets management.
  • Pragmatic, engineering-first mindset: able to balance security with developer experience, velocity, and real-world constraints.
  • Excellent communication skills: able to translate complex security issues into actionable guidance for both technical and non-technical stakeholders.
  • Proactive, autonomous, critical thinker with a continuous improvement mindset.
  • Nice to have: previous experience or knowledge of compliance requirements (GDPR, PCI-DSS…)
  • Fluent in French and English.

Additional Information

⚡ Our Recruitment Process

We believe in a fast, transparent, and human recruitment process.

Here’s what you can expect:

  • Intro Call with a Talent Acquisition Partner (30–45 min) – Get to know each other! We’ll share more about the role, the team, and our culture.
  • Manager Interview (60 min) – Deep dive into your experience, missions, and ways of working.
  • Take-Home Task – Practical exercise to showcase your strategic thinking and approach to security.
  • Task Debrief (60 min) – Discuss your task with members of the team
  • On-Site Interview (60 min) – Meet the VP of Engineering to align on expectations, culture, and long-term impact.

📍Location : Aix en Provence or remote, France

📅 Start Date : The sooner, the better

📄 Contract Type : Full-time / Permanent

❤️ You’ll Love Joining Us

Our HQ in the South of France offers an exceptional environment - natural, cultural, and digital - on a modern and eco-responsible campus.

🌴 Prefer flexibility?  We offer a hybrid model for all other positions with 3 mandatory on-site days per week plus 4 fully remote weeks per year.

🤝Put meaning back into your work and join a unique ecosystem that connects worlds often far apart: business, sports, education, and social impact, through projects like Ecole des XV, Provence Rugby, VP Green, Les Tremplins, and Chez Pierre.

💪 Forget your gym subscription! Access our large on-site fitness center morning, noon, and night - or challenge your colleagues to a padel match on our private court.

🎉 Live to the rhythm of Voyage Privé’s signature mix of business and fun: Company Breaks, Carnival, Annual Convention, meetups and talks… plus free tickets to every Provence Rugby home match and live music nights at the Dalida Institute.

✈️ And because travel is in our DNA : enjoy up to 20% off our exclusive getaway offers.

Join us and make your next career move a journey worth taking. 🌍

Read the full description
Security Security Engineer - Full Remote (France) or Hybrid at Voyage PrivĂŠ

Embeds security practices across product development, designs secure architectures, and builds automated security guardrails into CI/CD pipelines to strengthen the platform's security posture.

Mid Remote Posted 6 days ago RemoteFirstJobs Product
What this role involves

Company Description

✨ About Voyage Privé

Born in France in 2006, Voyage Privé has grown from an ambitious startup into becoming the Europe’s leading travel tech platform. Operating across 9 markets with tens of millions of users, we’re not just another e-commerce success story - we’re a tech powerhouse revolutionizing online travel.

What makes us unique? A mission-driven culture where performance meets impact. Our innovative campus brings together tech talent, professional athletes, students, and artists, creating an ecosystem where digital innovation drives both business growth and positive change.

We’re now at an inflection point, upgrading our entire technical foundation with cloud architecture, AI, and real-time systems to become a reference and top-of-mind platform for luxury travel, known by travelers for its for excellent offer and customer experience, and by our providers as a high-performance business development partner.

Job Description

🎯 Your Mission

As a Security Engineer, you’ll play a key role in shaping the security and resilience of Voyage Privé’s technology platform.

You’ll work closely with Engineering, Product, and Platform teams to embed security practices into every stage of product development, deliver measurable impact, and help us scale efficiently while maintaining a strong security posture.

You’ll have the opportunity to build many security foundations from scratch — from internal tooling to CI/CD guardrails — and influence key architectural and technical decisions as we redesign our platform for scale.

Your key responsibilities will include:

  • Strengthen the security posture across products, data and infrastructure: secure coding practices, code reviews, threat modeling, vulnerability remediation, cloud, and network hardening.
  • Develop automated security guardrails integrated into CI/CD pipelines (SAST, SCA, secrets scanning).
  • Design secure architectures for applications, APIs, data flows, and integrations in partnership with engineering teams.
  • Secure hybrid environments combining virtual machines, containerized workloads, and cloud-native services, ensuring consistent security standards across the entire platform.
  • Drive proactive risk identification through continuous scanning, threat modeling sessions, risk assessments, and architecture reviews.
  • Enable engineering teams to build secure-by-design practices by acting as a trusted advisor, developing internal tools, and leading security awareness sessions.
  • Operational security & incident readiness: participate in on-call rotations, investigate security events, and improve incident response workflows.
  • Lead security improvement projects: build automation, enhance tools, optimize processes, and foster a culture of security ownership.

Qualifications

💡 What We’re Looking For

We’re looking for builders who move fast, think big, and care deeply about creating impact that lasts

Your profile:

  • 5–7 years of experience in software engineering, security engineering, DevSecOps, or equivalent technical security roles.
  • Strong development background (Python, Node.js, Java, Go, PhP or similar).
  • Hands-on experience with modern CI/CD systems (GitHub Actions, GitLab, Jenkins).
  • Solid understanding of cloud security principles (AWS, GCP, Azure).
  • Experience securing both virtualized systems (VMs) and containerized workloads.
  • Strong knowledge of secure coding, OWASP Top 10, and application security fundamentals.
  • Experience with SAST, SCA, container/IaC scanning, runtime security tools, IAM, and secrets management.
  • Pragmatic, engineering-first mindset: able to balance security with developer experience, velocity, and real-world constraints.
  • Excellent communication skills: able to translate complex security issues into actionable guidance for both technical and non-technical stakeholders.
  • Proactive, autonomous, critical thinker with a continuous improvement mindset.
  • Nice to have: previous experience or knowledge of compliance requirements (GDPR, PCI-DSS…)
  • Fluent in French and English.

Additional Information

⚡ Our Recruitment Process

We believe in a fast, transparent, and human recruitment process.

Here’s what you can expect:

  • Intro Call with a Talent Acquisition Partner (30–45 min) – Get to know each other! We’ll share more about the role, the team, and our culture.
  • Manager Interview (60 min) – Deep dive into your experience, missions, and ways of working.
  • Take-Home Task – Practical exercise to showcase your strategic thinking and approach to security.
  • Task Debrief (60 min) – Discuss your task with members of the team
  • On-Site Interview (60 min) – Meet the VP of Engineering to align on expectations, culture, and long-term impact.

📍Location : Aix en Provence or remote, France

📅 Start Date : The sooner, the better

📄 Contract Type : Full-time / Permanent

❤️ You’ll Love Joining Us

Our HQ in the South of France offers an exceptional environment - natural, cultural, and digital - on a modern and eco-responsible campus.

🌴 Prefer flexibility?  We offer a hybrid model for all other positions with 3 mandatory on-site days per week plus 4 fully remote weeks per year.

🤝Put meaning back into your work and join a unique ecosystem that connects worlds often far apart: business, sports, education, and social impact, through projects like Ecole des XV, Provence Rugby, VP Green, Les Tremplins, and Chez Pierre.

💪 Forget your gym subscription! Access our large on-site fitness center morning, noon, and night - or challenge your colleagues to a padel match on our private court.

🎉 Live to the rhythm of Voyage Privé’s signature mix of business and fun: Company Breaks, Carnival, Annual Convention, meetups and talks… plus free tickets to every Provence Rugby home match and live music nights at the Dalida Institute.

✈️ And because travel is in our DNA : enjoy up to 20% off our exclusive getaway offers.

Join us and make your next career move a journey worth taking. 🌍

Read the full description
Security (fluent Ukrainian) Security Incident Response Specialist

Responds to and resolves security incidents while fluent in Ukrainian, supporting clients' security operations and threat mitigation.

Mid Posted 6 days ago Himalayas
What this role involves
SupportYourApp is an international Intelligent Support-as-a-Service company that has been providing business process outsourcing services to other IT companies around the globe (technical and customer support, services to improve customer experience) for the past 15 years.
Read the full description
Security (fluent Ukrainian) SOC Incident Response Specialist

Monitors security events and responds to incidents as part of a Security Operations Center team, requiring fluent Ukrainian language skills.

Mid Posted 7 days ago Jobicy AI
What this role involves
SupportYourApp is an international Intelligent Support-as-a-Service company that has been providing business process outsourcing services to other IT companies around the globe (technical and customer support, services to improve customer...
Read the full description
Security (fluent Ukrainian) SOC Incident Response Specialist

Monitors security events, responds to incidents, and analyzes threats as part of a security operations center team.

Mid Posted 7 days ago Jobicy AI
What this role involves
SupportYourApp is an international Intelligent Support-as-a-Service company that has been providing business process outsourcing services to other IT companies around the globe (technical and customer support, services to improve customer...
Read the full description
Security (fluent Ukrainian) SOC Incident Response Specialist

Responds to security incidents and manages SOC operations, investigating alerts and coordinating incident response activities.

Mid Posted 7 days ago Jobicy AI
What this role involves
SupportYourApp is an international Intelligent Support-as-a-Service company that has been providing business process outsourcing services to other IT companies around the globe (technical and customer support, services to improve customer...
Read the full description
Security (fluent Ukrainian) SOC Incident Response Specialist

Monitors security incidents, responds to alerts, and investigates potential threats within a security operations center.

Mid Posted 7 days ago Jobicy AI
What this role involves
SupportYourApp is an international Intelligent Support-as-a-Service company that has been providing business process outsourcing services to other IT companies around the globe (technical and customer support, services to improve customer...
Read the full description
Security Security Engineer – Full Remote (France) or Hybrid

Designs and implements security solutions to protect systems and infrastructure for a European travel tech platform.

Mid Remote Posted 7 days ago Jobicy AI
What this role involves
Company Description✨ About Voyage PrivéBorn in France in 2006, Voyage Privé has grown from an ambitious startup into becoming the Europe’s leading travel tech platform. Operating across 9 markets with...
Read the full description
Security Security Engineer – Full Remote (France) or Hybrid

Designs, implements, and maintains security infrastructure and protocols to protect company systems and data from cyber threats.

Mid Remote Posted 7 days ago Jobicy AI
What this role involves
Company Description✨ About Voyage PrivéBorn in France in 2006, Voyage Privé has grown from an ambitious startup into becoming the Europe’s leading travel tech platform. Operating across 9 markets with...
Read the full description