Senior Security & Compliance Officer

The position

Job description

Weglot is a tech solution that allows you to translate and publish a website in multiple languages.

Created in 2016, Weglot simplifies website translation by offering a turnkey and high-performance solution, with intuitive translation management tools. Weglot is used by marketing teams and web developers around the world.

Over 110,000 websites are already using Weglot for multilingual and translation.

Our mission is to create the world leader in translation for websites, by offering the best possible customer experience thanks to a talented team and around key values:

• Ambition: become the reference solution worldwide
• Curiosity: learn and improve every day
• Pragmatism: find solutions
• Kindness: take care of each other

Description of the position

You will join a new Infrastructure & Security team. This team aims to bring together various expertise to support our technical, sales and marketing teams in a transversal way.

Until now managed by a single function covering the entire Infrastructure & Security scope, our organization is evolving to segment expertise. As a Senior Security & Compliance Officer, you will be the pillar of the company's technical security. This team is being structured, and your expertise will play a key role in its development.

Your role is hybrid and strategic: you will ensure the operational continuity of security while gradually evolving towards an organizational security dimension.

Your missions:

In direct collaboration with Floran, the CTO, and other team members (DevOps such as Sarah), you will build tomorrow's security strategy, navigating between the maintenance of our historical platform and the securing of our innovations.

• Governance and Compliance management (GRC): Define, maintain and improve Weglot's security strategy, including policies, standards, and regulatory compliance (GDPR, SOC2, EU AI Act).
• AWS infrastructure hardening: Administer and centralize security of AWS accounts using native tools (GuardDuty, Inspector, Config, CloudTrail) and ensure patch application.
• Ensure security throughout the software lifecycle (SDLC): dependency analysis, IaC analysis, container analysis and CI/CD pipeline hardening. Define and implement the security framework for our generative AI features.
• Technical remediation: Lead security upgrade campaigns on the infrastructure, while integrating Security by Design principles.
• Cross-functional support: Assist product, engineering and business teams on security and architecture impacts.
• Cybersecurity awareness and internal IT management.

Weglot's technical environment:

Backend: Symfony 7 / PHP 8 Frontend: Next.js Database: PostgreSQL Aurora / MySQL Aurora / Elasticsearch Cloud provider: AWS / GCP Code management and CI/CD tools: GitHub / GitHub Actions Infrastructure configuration and management: Ansible / Terraform Container: Docker / Kubernetes / AWS ECS Monitoring: Datadog Security: Vanta / Aikido / Astra Security / Dependabot / Datadog SIEM

Profile:

5-8 years of Cloud security experience. You combine solid technical know-how with a good understanding of governance issues. You have confirmed experience with AWS and IaC (Terraform), and know how to operate modern detection tools. You have already contributed to compliance audits (e.g. SOC 2) and know how to use compliance monitoring tools (like Vanta) to simplify daily compliance. You have a strong curiosity for AI (LLM) security and the desire to apply best practices to these new technologies. Pedagogical and pragmatic. You see security as a service to development teams to help them move fast with confidence.

Interview process:

• 1st call with Marie, recruitment manager at Weglot
• Technical interview with Floran (CTO) and Sarah (DevOps Expert)
• Interview with Rémy (CPO) and Augustin (CEO) and meet some colleagues from the Tech team
• Offer

We try to be as responsive as possible, but the recruitment process may be extended due to end-of-year holidays. Thank you for your understanding!

Why join us?

Weglot is the perfect blend of an ambitious and caring environment. Our priority: that you flourish professionally, while having a good work-life balance. To do this, we try to set up the best possible working conditions. Here's the package Weglot offers:

• Work in a stimulating and challenging environment, with clients in over 100 countries
• A key time to join Weglot in terms of growth and opportunities
• Offices in the center of Paris (10th arrondissement)
• 8+ nationalities: cosmopolitan and multicultural spirit
• Competitive salary and benefits such as:
  • In addition to legal leave: an additional 8 weeks for maternity leave, 2 additional weeks for second parent leave, 4 days per year for sick children + menstrual leave
  • Childcare: partnership with lesparentszens.com to find a nursery spot more easily
  • Meal vouchers with Swile (€14.64/day) covered at 60%
  • Alan health insurance covered at 100% (partner and children included)
  • 100% coverage of monthly public transport pass and sustainable mobility package
  • Contribution to sports fees via Classpass
  • Remote policy: 2 days of teleworking per week. Everyone has a budget to equip themselves well at home.
  • Annual training budget
  • Events: annual seminar, team building, regular lunches and aperitifs
  • 4-day week (Wednesday or Friday OFF)

At Weglot, only your skills and motivation count: this job offer is open to everyone, and material or organizational accommodations can be considered based on each person's specific needs.