DevSecOps Internship
- Intern
- Function Numberly: Systems Administrator
Company Description
The story began in the year 2000, then it's the IPO followed by acquisitions, a double-digit growth and here we are!
We are pioneers of Data Marketing, recognised experts in digital CRM and Programmatic Marketing. We handle everything from data collection to activation on all digital platforms (mobile, desktop, tablets and connected objects).
As of today, we are a strong team of 500 employees. Based in New York, London, Dubai, Montreal, Amsterdam, Milan, Tel Aviv. Our R&D focused teams are based in Paris.
Job Description
Numberly helps customers collect, analyze and leverage their data across all marketing channels.
To do so, Numberly operates its own infrastructure, split over multiple datacenters. It gives us the ability to operate multiple distributed databases and process billions of events every day at scale while optimizing its cost and maintaining latency goals.
We also love open-source software and because we depend a lot on it we strive to redistribute to the community.
This massive environnement needs security automation in order to prevent any kind of breach.
Within the Infrastructure & Security team, you will work to create and improve security related projects to seamlessly integrate with our engineering teams.
Our main goal is to improve the daily life of our engineering team members and thus improving the security context of Numberly.
Whether it is for secure development needs or to optimize our infrastructure, this position will allow you to acquire a solid base of security knowledge and automation at scale.
Knowledge sharing is also very important to us, you will be asked to present and train around your projects.
Your missions:
Interact with other teams to proactively solve security problems
Collaborating with Tech teams to develop and secure underlying infrastructure.
Improve our CI/CD pipeline for vulnerability checks (credential leaks, dependency scans, Docker images)
Deployment of Open Source IPS solutions connected to our centralized log solutions (Crowdsec)
Development of automation linked to our 2FA processes (Yubikey, WebAuthn)
Present and share your work ( Documentation, Formation..)
Qualifications
Who you are:
You are curious about security & automation
You like to automate your tasks
You have experience in one or more languages (e.g. Python, Go)
You know some good practices of secure development
You have a strong willingness to progress and to help others progress, technically (meetups, internal training) and personally
You’re a good communicator, able to popularize work, defend ideas and listen to others
What we currently work with:
Ansible, terraform
Gitlab (CI, SAST)
Hashicorp Vault
Kubernetes: on-premises, AKS (Azure), EKS (AWS)
Prometheus, Thanos, Elasticsearch, Graylog
HAProxy, openresty (nginx)
PowerMTA, dovecot
Python, Go, Lua
Ubuntu
GraphQL and REST APIs
AWS, Azure
What we would love:
Open-source contributions
Experience automating large-scale systems
Past (or present) developer experience
Interest in security (Root-me, Hackthebox, ctf)
Additional Information
Even with 500 people we like to spend time together!
Participate to “Happy Meetings’” where we share the Group’s news with everyone from around the world
Get to know your “Jedi Master”, your ‘go to guy’ when you arrive
Go to yoga classes, cross-training, barbecues, internal parties...
Find the most incredible fancy costume for the next party
Remote friendly
Financial participation for bike maintenance if you commute by bike
Opportunity to talk or to attend conferences
Internal training with labs maintained by dozens of people (Technical, People Development, Personal)
Recruitment process
First quick exchange with our recruitment team
Meeting with either Alexandre (Assistant RSSI), Laurent (SRE/DevOps) and Solvik (Head of Infrastructure) to speak of your love for automation
Final meeting with Alexys, CTO
We're committed to be as fast as possible: it usually takes up to 10 days to go through the whole process together.