Proton is hiring a Security Analyst to be at the frontline of protecting its global infrastructure, combining analytical threat investigation with practical security engineering. The role bridges day-to-day security monitoring and proactive threat defense: responding to alerts and managing incidents while actively designing the SIEM rules, playbooks and systems that catch attackers before they succeed. Compensation in Paris ranges from EUR 38,000 to 62,000 gross annually; the role is on-site.
Responsibilities
- ▹Maintain, optimize and enhance the core security monitoring toolkit (SIEM, sensors, etc.)
- ▹Design, build and continuously refine high-fidelity alerts from raw infrastructure events, and proactively identify blind spots
- ▹Monitor, triage and deeply investigate security alerts across Proton's corporate infrastructure
- ▹Own containment and mitigation of security incidents, and develop and test incident response plans and playbooks
- ▹Analyze logs, endpoints and network traffic to isolate anomalies and identify emerging risks
- ▹Collaborate with engineering teams on secure architectures, OS hardening and strict access controls
- ▹Advise the wider company on security matters and promote a culture of IT security awareness
Requirements
- ▹Good logical reasoning, structure and problem-solving skills; ability to correlate diverse data sources and think like an attacker
- ▹Solid understanding of system and network security best practices, including network ACLs, authentication mechanisms and endpoint defense
- ▹Strong working knowledge of Linux-based operating systems, their security components, system calls and mechanisms like SELinux
- ▹Familiarity with modern malware techniques and attacker TTPs, and ability to translate threat intelligence into actionable SIEM rulesets
- ▹Sound understanding of networking protocols, web technologies and detection mechanics (e.g. EDR, IDS/IPS)
- ▹Intermediate-to-advanced Python (or similar) for scripting, parsing and automation
- ▹Excellent written and spoken English
- ▹A deep belief in digital privacy
Nice to have
- ▹3-4 years of experience in a cybersecurity or operations context
- ▹Hands-on experience with the Elastic stack, Vector or other large-scale log analysis tools
- ▹Experience with data analysis tools such as Jupyter and Pandas for anomaly hunting
- ▹Practical knowledge of securing containerized workloads (Docker, Kubernetes) and cloud environments
- ▹Experience integrating threat intelligence into security workflows
- ▹An industry-recognized security certification
Soft skills
What we offer
- ▹Stock options from day one
- ▹The right hardware and software for your best work
- ▹Learning and development investment
- ▹Strong health coverage, solid retirement options, generous leave and wellness support
- ▹In-person collaboration in offices across Geneva, Zurich, Barcelona, London and more
- ▹Free lunch and snacks in the offices every day
- ▹Transport support: public transport, bike allowance or parking
- ▹Flexible working hours based on outcomes
- ▹Compensation range in Paris: EUR 38,000 - 62,000 gross annually
About the company
Proton was founded in 2014 by scientists from CERN on the belief that privacy is a fundamental human right. It built the world's largest encrypted email service (Proton Mail) and expanded into Proton VPN, Proton Drive, Proton Pass and Proton Calendar. Proton is profitable, independent of VC control, with 700+ team members across 50+ countries.
