Staff SecOps Engineer

    • Team: Security
    • Location: Paris, FR
    • Employment Type: FullTime

    • Location Type: Hybrid

We’re a team of experts pushing the limits of what’s possible, united by our common goal to unlock true freedom through digital ownership, making technology accessible for all. We believe in a world where users, creators and enterprises manage their value with ownership and freedom. Our curiosity drives us to innovate, empowering individuals on a global scale. We believe change is constant and our team moves forward as one, with a culture of problem-solving where every employee is empowered and supported to challenge tradition and create solutions. Our mission is simple: to make self-custody accessible and give people the keys to their own financial futures. If you want to make a true impact, we want you to join us at Ledger.

At Ledger, we’re proud to be the global platform for digital assets and Web3, with over 20% of the world’s crypto assets secured through our Ledger devices. With our headquarters in Paris, and offices in Vierzon, Grenoble, Montpellier, London, Portland, Geneva, Zurich and Central Singapore, we have a team of around 600 professionals developing a variety of products and services to enable individuals and companies to securely buy, store, swap, grow and manage crypto assets – including the Ledger hardware wallets line with more than 7.5 millions units already sold in 200 countries.

The team:

You’ll join the Security Operations team, responsible for protecting Ledger’s corporate, cloud, SaaS, and data center environments. Its mission: to anticipate, detect, investigate, and respond to cyber threats—including monitoring, alert triage, incident response, detection, visibility, automation, exposure tracking, and continuous process improvement. The scope is distinct from that of the Donjon (product security): SecOps covers the operational security of internal environments, the cloud, endpoints, workloads, identities, and infrastructure.

As a close-knit and experienced team—technically demanding and committed to knowledge sharing—we’re also continuously building the SOC itself: integrating new log sources, ensuring data quality, expanding detection coverage, and developing reliable dashboards and operational workflows.

Our technical stack includes:

  • Splunk for SIEM, investigations, and dashboards;

  • CrowdStrike for EDR and endpoint/workload security;

  • Wiz for cloud security and exposure management;

  • Torq for SOAR and automation;

  • AWS, including modern environments such as EKS/Kubernetes;

  • An in-house developed Agentic SOC for alert enrichment, correlation, investigation support, reporting, and automation.

AI is at the heart of how we work: investing in AI applied to security is a strategic priority for Ledger this year. We’ve built our own in-house Agentic SOC, which autonomously investigates weak signals—the large volume of unreliable alerts that a human team couldn’t sort through manually—and enriches them, so our engineers can focus on what matters most and resolve incidents faster: high-quality detection, noise reduction, and accelerated investigations.

What you’ll be doing:

As a Staff Security Operations Engineer, you are the SecOps team’s top technical expert and our go-to authority on incident management. You lead the response to the most critical and complex incidents (CSIRT), spearhead proactive threat hunting, and define the detection and response strategy that the entire team relies on. Beyond day-to-day operations, you shape the architecture of our detection pipeline, SIEM, and automation—including the management of our internal Agentic SOC—and you establish the standards, playbooks, and methodologies that raise the technical bar for the entire team. Above all, you’re a builder: beyond design, you’ll build and actively evolve our systems—the Agentic SOC, the log pipeline, and automation—with a solid understanding of the underlying infrastructure. This is an expert role (individual contributor): your impact stems from your expertise, your judgment under pressure, and your influence.

Critical Incident Response (CSIRT):

  • Serve as the primary point of contact and coordinator for the most complex incidents across the cloud, corporate systems, endpoints, identities, and the data center.

  • Conduct end-to-end investigations: root cause analysis, forensics, timeline reconstruction, and remediation recommendations to prevent recurrence.

  • Serve as the team’s go-to expert in incident management, ensuring a rigorous and consistent approach to handling, escalating, and documenting incidents.

Detection Strategy & Threat Hunting:

  • Define the team’s detection strategy, architecture, and methodology.

  • Lead proactive threat hunting by leveraging CTI and OSINT to identify and neutralize risks before they impact Ledger.

  • Address the most challenging and emerging detection issues, and translate threat intelligence into concrete improvements in security posture.

Architecture & Agentic SOC:

  • Design and optimize the SIEM (Splunk) architecture and SOAR (Torq) workflows that underpin effective detection, triage, and response.

  • Bring our Splunk environment up to standard and state-of-the-art: data quality and standardization (CIM), data models, search performance, and detection governance.

  • Build, evolve, and own the architecture of our internal Agentic SOC and our log/data pipeline, and lead the automation of reporting for the SecOps team.

  • Apply deep expertise in cloud security (AWS, EKS/Kubernetes) and Wiz (CSPM/CNAPP) to harden the cloud and prioritize large-scale exposure.

Technical Leadership & Mentoring:

  • Establish the standards, playbooks, and runbooks that the team relies on.

  • Mentor and foster the technical growth of senior and junior engineers, and act as a force multiplier within SecOps.

  • Work with the Engineering, Infrastructure, IT, and Cloud teams to align operational security with the organization’s objectives.

What we’re looking for:

  • 9+ years of experience in security operations, incident response, and CSIRT.

  • A strong track record as a technical expert in incident management, threat hunting, and detection engineering.

  • Comfortable working both as an individual contributor and as a team player in a fast-paced cloud and SaaS environment.

  • In-depth expertise in SIEM (ideally Splunk) and SOAR platforms, as well as CTI/OSINT methodologies.

  • Solid knowledge of AWS security (IAM, audit logs, network configurations, workloads, containers, Kubernetes) and cloud security tools (ideally Wiz, CSPM/CNAPP); experience with an EDR (ideally CrowdStrike).

  • Strong incident response and forensics skills, with the ability to conduct complex end-to-end investigations.

  • The ability to automate tasks and reporting using Python, Bash, APIs, GitHub Actions, a SOAR platform, or equivalent.

  • A solid understanding of infrastructure (cloud, networking, containers, CI/CD) and the ability to build and scale: log/data pipelines, integrations, and internal services.

  • A strong interest—or experience—in AI applied to security operations, agent-based workflows, and SOC automation.

Connect with us

Take your first step in becoming a member of the Ledger Community. Fill out the form below to begin your application.

Job Location

Similar Jobs

A wooden gym with mirrors and white lights and yoga mats on the floor

Benefits & Wellness

At Ledger, we are dedicated to continually investing in our employees, helping them excel both professionally and personally. That’s why we offer more than just salaries; we provide comprehensive compensation packages that include a wide range of benefits.

In addition to our global benefits offerings, we provide a number of benefits and wellness programs tailored to specific regional offices. For details about benefits available in your location, please speak with your Talent Acquisition contact during the application process. You can also learn more by visiting our Benefits page.

  • Why work at Ledger?

    At Ledger, we invite you to do the best work of your career by joining a team dedicated to the future of digital ownership. Our culture is defined by our 9 principles, where we empower you with extreme ownership to solve high-stakes security challenges without the friction of traditional hierarchy. You’ll collaborate across a transparent, global community of over 50 nationalities, blending the audacity to disrupt industries with the pragmatism required to protect billions in assets. If you are driven by a craft-first mindset and a desire for genuine impact, you’ll find an environment built on trust, agility, and the shared mission of securing economic freedom for all.

    A view from above of four people sitting on bleacher style seating next to a window. Two are on laptops.
A woman in an individual work pod looking down at her laptop.

“Ledger is an incredible melting pot of cultures and talents united around common goals, such as security and the democratization of blockchain usage. At Ledger, there’s never a moment without the opportunity to learn something new, whether in technical fields or beyond. The company strives for excellence, making each project highly challenging and encouraging every employee to consider the best solutions to implement.”

Mickael Billard,

Engineering Manager, Paris

Application Process

Learn what to expect if you apply for a role with Ledger.

  • Application received

    You have submitted your application with Ledger.

  • 1. Application Review

    Our Talent Acquisition team will carefully review your application and experience to see if there’s a good match.

  • 2. Screening

    You’ll have a call with one of our recruiters to get to know you better and discuss your background.

  • 3. Hiring Manager Interview

    You’ll then meet the hiring manager to discuss the role and expectations in more detail.

  • 4. Deep Dive Interview/Skills Assessment

    Depending on the role you have applied for, you may be asked to complete a business case or a specific skills assessment.

  • 5. Final Interview

    This is typically the last stage, conducted with a senior team member for the final assessment.

CHECK OUT OUR BLOG

  • Person, Adult, Male, Man, People, Shop, Face, Refrigerator, Shelf, Indoors

    People of Ledger – Danny Franca

  • Read more: Meet the Sales Team - Adrien Riquier, Global Key Account Manager

    Meet the Sales Team – Adrien Riquier, Global Key Account Manager

  • Read more: Meet the Customer Support team - Jess, Senior Customer Success Specialist

    Meet the Customer Support Team – Daisy, Staff Customer Success Specialist

  • Woman smiling

    Meet the Engineering Team – Beth, Staff Software Engineer

A wooden gym with mirrors and white lights and yoga mats on the floor

Benefits & Wellness

At Ledger, we are dedicated to continually investing in our employees, helping them excel both professionally and personally. That’s why we offer more than just salaries; we provide comprehensive compensation packages that include a wide range of benefits.

In addition to our global benefits offerings, we provide a number of benefits and wellness programs tailored to specific regional offices. For details about benefits available in your location, please speak with your Talent Acquisition contact during the application process. You can also learn more by visiting our Benefits page.

  • Why work at Ledger?

    At Ledger, we invite you to do the best work of your career by joining a team dedicated to the future of digital ownership. Our culture is defined by our 9 principles, where we empower you with extreme ownership to solve high-stakes security challenges without the friction of traditional hierarchy. You’ll collaborate across a transparent, global community of over 50 nationalities, blending the audacity to disrupt industries with the pragmatism required to protect billions in assets. If you are driven by a craft-first mindset and a desire for genuine impact, you’ll find an environment built on trust, agility, and the shared mission of securing economic freedom for all.

    A view from above of four people sitting on bleacher style seating next to a window. Two are on laptops.
A woman in an individual work pod looking down at her laptop.

“What really blew me away was how genuine and earnest everyone is. There is no “you’re on your own” mentality, I had the opportunity to learn the ropes at my own pace, observe, ask questions and find out how to optimize things to work based on my preferences. My team especially, is helping me relearn what a healthy work relationship looks like. We support each other and there’s no gatekeeping on projects, technique or skill.”

Jessie Thavonekham,

Staff Brand Designer, London, UK

Application Process

Learn what to expect if you apply for a role with Ledger.

  • Application received

    You have submitted your application with Ledger.

  • 1. Application Review

    Our Talent Acquisition team will carefully review your application and experience to see if there’s a good match.

  • 2. Screening

    You’ll have a call with one of our recruiters to get to know you better and discuss your background.

  • 3. Hiring Manager Interview

    You’ll then meet the hiring manager to discuss the role and expectations in more detail.

  • 4. Deep Dive Interview/Skills Assessment

    Depending on the role you have applied for, you may be asked to complete a business case or a specific skills assessment.

  • 5. Final Interview

    This is typically the last stage, conducted with a senior team member for the final assessment.

CHECK OUT OUR BLOG

A wooden gym with mirrors and white lights and yoga mats on the floor

Benefits & Wellness

At Ledger, we are dedicated to continually investing in our employees, helping them excel both professionally and personally. That’s why we offer more than just salaries; we provide comprehensive compensation packages that include a wide range of benefits.

In addition to our global benefits offerings, we provide a number of benefits and wellness programs tailored to specific regional offices. For details about benefits available in your location, please speak with your Talent Acquisition contact during the application process. You can also learn more by visiting our Benefits page.

  • Why work at Ledger?

    At Ledger, we invite you to do the best work of your career by joining a team dedicated to the future of digital ownership. Our culture is defined by our 9 principles, where we empower you with extreme ownership to solve high-stakes security challenges without the friction of traditional hierarchy. You’ll collaborate across a transparent, global community of over 50 nationalities, blending the audacity to disrupt industries with the pragmatism required to protect billions in assets. If you are driven by a craft-first mindset and a desire for genuine impact, you’ll find an environment built on trust, agility, and the shared mission of securing economic freedom for all

    A view from above of four people sitting on bleacher style seating next to a window. Two are on laptops.
A woman in an individual work pod looking down at her laptop.

“Every single day at Ledger has brought a new opportunity to learn and contribute—especially in areas I’m genuinely passionate about like talent development, performance management, and employee learning. What I love most is being able to finally apply all the theory from textbooks to real projects that have impact.”

Vishakha Agharkar,

Talent Development Senior Associate, Paris

Application Process

Learn what to expect if you apply for a role with Ledger.

  • Application received

    You have submitted your application with Ledger.

  • 1. Application Review

    Our Talent Acquisition team will carefully review your application and experience to see if there’s a good match.

  • 2. Screening

    You’ll have a call with one of our recruiters to get to know you better and discuss your background.

  • 3. Hiring Manager Interview

    You’ll then meet the hiring manager to discuss the role and expectations in more detail.

  • 4. Deep Dive Interview/Skills Assessment

    Depending on the role you have applied for, you may be asked to complete a business case or a specific skills assessment.

  • 5. Final Interview

    This is typically the last stage, conducted with a senior team member for the final assessment.

CHECK OUT OUR BLOG

  • Formal Wear, Tie, Suit, Blazer, Head, Person, Face, Portrait, Smile, Man

    Meet the Engineering Team – Olaoluwa, Software Engineer