Junior Security Engineer

Join Pigment: Transforming Business Planning and Performance with AI  
Founded in 2019, Pigment stands out as one of the fastest-growing SaaS companies globally, redefining business planning and performance with our AI-powered platform. We empower organizations across diverse industries, including Consumer Packaged Goods, Retail, and Technology, to seamlessly integrate data, people, and processes, enabling them to plan and adapt rapidly.  
With a vibrant team of over 500 professionals across North America and Europe, and offices in New York, Toronto, London, Paris, and the Bay Area, Pigment has successfully secured nearly $400 million in funding from leading global venture capitalists. Our recognition as a Visionary in the 2024 Gartner® Magic Quadrant™ for Financial Planning Software underscores our commitment to excellence, as we proudly partner with industry leaders like Unilever, Vinci, Kayak, Siemens, and Coca-Cola.  
At Pigment, we champion smart risks, celebrate bold ideas, and challenge the status quo—all as a united team. Every team member has the opportunity to make a significant impact and tackle ambitious challenges. Together, we pursue excellence with a collaborative spirit, continuously raising the bar to ensure strong performance and a proactive approach while fostering an environment of humility.  
If you are passionate about innovation and wish to collaborate with some of the brightest minds in the industry, we would love to hear from you!
Under the coordination of the CISO, and supported by a team of seasoned security engineers, you will participate in the definition, running, continuous improvement of security processes that keep Pigment safe (ex: Shadow IT monitoring, alerting related to sensitive actions performed in the platform, investigation of SOC alerts, etc.)

This may include :

• Triaging and/or action security tickets and address requests from a variety of teams
• Identifying inefficiencies in security processes and procedures and contributing to implementing relevant improvements, including automated workflows in collaboration with the Business Automation team.
• Help create and test new detection use cases and playbooks based on threat intelligence
• Collaborate with other teams to integrate security controls into their processes
• Contributing to knowledge base development for security operations
• Representing security within the company onboarding workflow by delivering and creating assets for all internal audiences
• Assisting with vendor reviews, including evidence gathering and implementation of controls in service rollouts
• Reviewing configurations of existing tooling to ensure that configurations, scopes, etc. are adequate according to compliance and risk outcomes

Environment :

• The scope of this role includes both the production environment and internal IT
• Pigment sites are located in Paris, London, Toronto, and NYC 
• MacOs, Windows, Linux
• Google Cloud Platform, Kubernetes, Terraform, Postgres, SingleStore, Vault
• Okta, Oauth, JWT, C#, .NET Core, TypeScript, React, Datadog
• Google Workspace, Google Identity, Vanta, Hibob, Slack, GitHub, HackerOne
• Security compliance framework: SOC1, SOC2, ISO27001, GDPR

Who you are :

• You have at least some field experience, which can be in the form of a relevant internship
• You have strong academic or self taught knowledge in operational security (web security) and development (Python, PowerShell, Bash), as well as some good understanding of the mechanisms and operation of public cloud environments (preferably GCP)
• Some basic understanding of security frameworks (NIST, CIS, ISO27001)
• You have great team spirit with a problem-solving, can-do attitude.
• You have a good dose of humility and the willingness to grow 
• You speak English fluently (French is not mandatory!).
• You have excellent written and verbal communication abilities
• You obviously a demonstrated eagerness to learn and develop new skills

We conduct background checks as part of our hiring process, in accordance with applicable laws and regulations in the countries where we operate. This may include verification of employment history, education, and, where legally permitted, criminal records. Any checks will be conducted lawfully prior to formal employment contracts being signed, with candidate consent, and information will be treated confidentially.
Pigment is an equal opportunity employer. We believe diversity is a strength and fosters innovation. We are committed to enabling everyone to feel included and valued at the workplace.  All qualified applicants will receive consideration for employment without regard to age, color, family, gender identity, marital status, national origin, physical or mental disability,  sex (including pregnancy), sexual orientation, social origin, or any other characteristic protected by applicable laws. We may process your personal data in accordance with our HR Data Protection Notice.