
Alan · Paris
HEALTH CAN’T WAIT. Not for symptoms to get worse. Not for a six‑month appointment. Not for a system to catch up. But that’s exactly how healthcare works today....
Not for symptoms to get worse. Not for a six‑month appointment. Not for a system to catch up. But that’s exactly how healthcare
works today. You wait, until you can’t.
Alan exists to end the wait.
Health is a universal right, and we believe this right can only become real when it’s coupled with prevention. We need to stop
treating health as something we repair and start treating it as something we build, every day. It’s not solely a question of
willpower. It’s the healthcare system itself that needs to work for everyone, in a sustainable way.
So we are building the new standard in prevention insurance. Alan is the first company that integrates insurance, prevention, and
care into a single, acclaimed user experience.
We are on an incredible journey to build a global leading company, with a unique culture. We already partner with 40K+ companies
of all sizes, serving more than 1M+ members, and have reached €800M+ in ARR.
Prevention as the new norm. That's what we're building with our team of 800+ people. If it speaks to you: we're hiring across
France, Spain, Belgium, and Canada. And beyond.
Alan operates at the intersection of health insurance, prevention, and regulated data. The person in this role owns the security
governance and risk posture of a company that handles sensitive health data for 1M+ members, operates under DORA and HDS
certification requirements, and is regulated by the ACPR. They work in close partnership with Legal, Internal Audit, and the
broader Risk function — this is a collaborative role, not a siloed one.
Own and operate the ISO 27001 ISMS. You are the accountable owner of the Information Security Management System — scope
definition, Statement of Applicability, internal audit programme, and management review. You've led at least one full
certification or recertification cycle and know what breaks down in the months between audits.
Be the security expert in the room on regulatory and privacy matters — not the owner. Legal leads on DORA, HDS, RGPD, PGSSI-S, and
regulatory relationships. Your role is to bring the technical and operational security substance: translating regulatory
requirements into controls, flagging implementation gaps, and making sure the security programme holds up when the regulatory team
negotiates with the ACPR or ANS.
Run risk as a living programme, in partnership with the broader risk function. You lead security risk cartography using EBIOS RM
and ensure it feeds into — and is informed by — the company-wide risk framework. You facilitate risk workshops, produce treatment
plans, and bring the security lens to forums where non-security risks are also on the table. You know when a security risk is
actually a business risk in disguise.
Own the controls framework, but distribute ownership of controls themselves. You define the framework, set the standards, and
track coverage — but the controls live with the teams who build and run the things they protect. You work closely with
Infrastructure, Platform, and Engineering to ensure foundational building blocks (identity, network, secrets management, logging)
are designed with security requirements embedded, not bolted on. You're a partner to those teams, not an auditor standing over
them.
Run audit cycles with rigour, in close partnership with Internal Audit. You manage the security audit programme and coordinate
with certification bodies, but you're not operating in a vacuum. You work with Internal Audit to align scopes, avoid duplication,
and present a coherent picture of control effectiveness to the board. You've sat in joint audit planning sessions and know how to
make that relationship productive rather than territorial.
Manage third-party risk with real teeth. You run vendor security assessments, define contractual security requirements (security
annexes, DPAs). You partner with our Risk team, which oversees third-party risk, and own the security dimension.
Bring the health sector context. You understand the ANS framework, CERT Santé requirements, and what it means to handle sensitive
health data operationally — not just on paper. You're a useful partner to Legal when the question is "what does this regulation
actually require us to do technically?"
Own incident governance and support DORA reporting. You classify and escalate ICT incidents internally, own BCP and DRP
governance, and provide the security substance for DORA incident reports.
Next-Gen Compliance Framework: ISO 27001, DORA, HDS, NIS2 — multiple regulators, multiple countries, one coherent governance
backbone. Build the system that lets Alan scale from 1M to many millions of members without rebuilding compliance every time.
Automated Audit & Evidence Engine: Replace manual evidence collection with scripted pipelines plugged directly into engineering
systems. Turn audit cycles from quarterly fire drills into a continuous capability.
Living Risk Cartography: Risk treated as an operational signal, not a static deliverable. EBIOS RM at the core, feeding directly
into business and engineering decisions.
You'll work closely with Legal, DPO, Internal Audit, and the broader Risk function — and partner day-to-day with Infrastructure,
Platform, Engineering, Product, and Operations. You're the bridge between regulatory complexity and operational simplicity.
Direct Impact: You own the trust foundation that lets Alan handle health data for 1M+ members and operate in highly regulated
markets. Your work is the precondition for everything else Alan does.
Complex Problems: 4 regulators across 4 countries, sensitive health data, and a regulatory landscape that keeps shifting (DORA,
NIS2, AI Act) — to be modeled into a single, coherent control system.
Ownership & Growth: Board and executive exposure, real influence on company-wide risk decisions, and the autonomy to shape Alan's
security culture across 800+ people.
Automate compliance work wherever possible. You script evidence collection, automate control testing, and connect GRC tooling to
engineering pipelines. You've used Python or similar to reduce the manual lift of an audit cycle, and you actively look for the
next process to streamline.
Configure and own GRC tooling, not just use it. You can administer platforms like CISO Assistant, ServiceNow GRC, or Archer —
designing workflows, building dashboards, and making them actually useful for the teams that feed them data.
Speak cloud governance fluently. You understand shared responsibility in HDS-qualified environments, know what CSPM tools surface
and what they miss, and can reason about policy-as-code (OPA, SCP) without needing an engineer to translate.
Read architecture well enough to challenge it. You can review a proposed architecture, identify control gaps in identity, network
segmentation, encryption, or logging, and push back credibly in a room of engineers — without pretending to be one.
Interpret vulnerability data and drive prioritisation. You read scan outputs, work with engineering teams to prioritise
remediation by business risk rather than CVSS score, and track resolution KPIs over time.
You translate risk into business language. You can brief a board or an audit committee and make them feel informed — not
overwhelmed or underwhelmed. You know the difference between a finding that requires an emergency board call and one that belongs
in a quarterly report.
You influence without authority. You align Legal, DPO, Risk, Engineering, Product, and Operations on security requirements without
creating blockers or adversarial dynamics. People don't avoid you — they come to you early because you make their lives easier,
not harder.
You manage programmes with audit-grade rigor. You run structured, traceable roadmaps. You know where every commitment is, who owns
it, and when it's due. You escalate proactively and don't let dependencies surprise you.
You build security culture, not compliance theatre. Your awareness programmes land because they're relevant, not because they're
mandatory. You foster proportionate risk ownership across the company — the goal is teams making better decisions, not teams
checking boxes.
You think in principles when frameworks shift. DORA is live. NIS2 transposition pace varies. The AI Act is arriving. You don't
freeze when the regulatory landscape moves — you reason from first principles and adapt without waiting to be told what to do.
Location: Paris-based, hybrid. We value in-person collaboration and ask Alaners to be in the office part of the week.
🎯 We hire people, not checklists. If you're excited by this scope but don't check every box, we'd still love to hear from you.
🏨 L'ENTREPRISE Resilience transforme la prise en charge des patients en oncologie, gastro-entérologie et psychiatrie en améliorant l'accès aux soins et l'accompagnement sur toute la durée du parcours. Nos applications de santé ne doivent pas seulement améliorer la vie des patients : notre travail consiste à développer des techniques et des processus pour minimiser les risques sur les patients. Rejoindre Resilience, c'est contribuer à une mission concrète dans un environnement scale-up où autonomie et impact sont au cœur de notre culture. 📝 TON RÔLE En quelques mots : Tu es owner du programme de conformité sécurité (ISO 27001) au sein de l’équipe QARA (Quality, Assurance & Regulatory Affairs). Ta mission : Animer et piloter notre système de management de la sécurité de l'information (SMSI) et garantir la cohérence au système qualité existant (SMQ). C'est un poste spécialisé en GRC (Gouvernance, Risques et Conformité), avec une forte sensibilité santé : tu sais lire les exigences réglementaires qui touchent à la sécurité, tu travailles main dans la main avec tes collègues et le Security Manager, mais tu restes ancré dans ton cœur de métier tout en gardant en tête l'impact final sur le patient. Ton impact : Tu es le moteur opérationnel qui permet à Resilience de se développer sereinement sur des marchés régulés (santé, données sensibles) en garantissant notre posture de sécurité et notre crédibilité auprès des clients, partenaires et autorités. Ton quotidien : * Piloter et automatiser le SMSI ISO 27001 : Gestion proactive du programme ISO 27001— contrôles, registre des risques, politiques, audits, actions correctives. Construire et améliorer les workflows d'automatisation (Notion, agents IA, reporting) pour rester en permanence audit-ready avec une vraie curiosité pour l'innovation technologique. * Interface SMSI / cybersécurité des dispositifs médicaux : Assurer la cohérence entre SMSI et SMQ, monter en compétence pour accompagner les exigences de cybersécurité DM (IEC 81001-5-1, IEC 62443, SBOM, MDR Annexe I §17) en appui de l'équipe QARA, contribuer aux dossiers techniques et audits sur les volets sécurité, accompagner le gap assessment DiGA (BSI TR-03161) côté sécurité, assurer la veille FDA cybersecurity. * Préparer de nouveaux cadres réglementaires : Anticiper et traduire les exigences NIS2, HIPAA, SOC2 en contrôles pragmatiques et livrables concrets. ✨ TON ÉQUIPE Ici, on ne travaille pas en silo. Tu rejoins une structure agile où la conformité est un vrai sport d'équipe : * Ta Manager : Yasmine, la gardienne de la conformité réglementaire de nos dispositifs médicaux (DM). Elle t’apportera la vision stratégique "Santé" pour aligner tes chantiers sécurité avec les exigences du marché et te fera monter en compétence sur notre secteur. * Ton équipe de cœur (QARA) : Un trio d'experts passionnés. Ce sont tes interlocuteurs quotidiens pour tout ce qui touche au SMQ, aux dossiers techniques MDR et à la préparation des audits. * Ton binôme technique : Le Security Manager. Il est l'architecte des fondations techniques et de la défense. De ton côté, tu es le référent GRC / SMSI : tu traduis la technique en conformité et tu structures la gouvernance. * Le petit ➕ de l'équipe : Un contexte unique où sécurité de l'information et qualité dispositifs médicaux se rejoignent dans un système de management unifié. Tu seras au cœur de cette intégration, avec un impact direct sur des produits qui améliorent la vie de patients atteints de cancer. 👤 PROFIL RECHERCHÉ ⚙️ Tu es la bonne personne si tu sais : * Piloter et gérer un ISMS ISO 27001 (gestion des risques, audits internes, conception des preuves, actions correctives) * Traduire des exigences réglementaires en contrôles pragmatiques adaptés aux équipes techniques * Automatiser des workflows de conformité (collecte d'évidences, reporting, métriques) * Utiliser des outils modernes (Notion, Agents IA, systèmes de ticketing, bases de données) * Communiquer efficacement à l'écrit et à l'oral avec des stakeholders variés (technique, business, leadership) * Parler Anglais (B1) 🙂 Tu es la bonne personne si tu as : * Un fort sens de l'ownership : tu mènes tes sujets jusqu'au bout et débloques proactivement les autres. * Une approche pragmatique et orientée résultats, avec une capacité à embarquer les autres sur l'importance de la mission. * Du pragmatisme : tu sécurises sans ralentir - conformité élevée sans alourdir le quotidien des équipes. * Une excellente capacité de collaboration : tu construis la confiance avec les équipes techniques. * Une vraie curiosité pour les environnements régulés santé — tu n'as pas peur de lire un texte réglementaire et d'en tirer des implications concrètes * Un confort avec l'ambiguïté et l'autonomie en environnement scale-up. 📃 Tu es la bonne personne si tu as déjà : * + de 2 ans d'expérience en Gouvernance, Risques et Conformité (GRC) dans un environnement tech (SaaS fortement préféré, ou en cabinet de conseil avec une forte envie de passer chez le client final). * Travaillé en transverse avec des équipes engineering, product, legal. * Mis en place ou amélioré des processus de conformité dans un contexte de croissance. * Répondu à des questionnaires de sécurité clients, due diligence fournisseurs, ou audits externes. C'est un plus si tu : * Es certifié(e) ISO 27001 Lead Implementer ou Lead Auditor. * As une expérience en healthtech ou dispositifs médicaux. * Connais les exigences de cybersécurité DM (MDR §17, IEC 81001-5-1, SBOM) — la curiosité suffit si le reste est solide. 💛 POURQUOI NOUS REJOINDRE ? * Impact direct et ownership stimulant : Tu construis et animes le moteur de conformité. Tu ne maintiens pas de la documentation, tu conçois des systèmes, automatises des workflows et façonnes la manière dont la conformité fonctionne dans toute l'entreprise. * Culture pragmatique et automation-first : Nous utilisons des outils modernes (Notion, agents IA, automatisation de workflows) et travaillons en étroite collaboration avec les équipes techniques. Tu auras la liberté de construire des solutions intelligentes et scalables. * Mission à impact dans la santé : Ton travail permet de servir des populations vulnérables tout en maintenant les plus hauts standards de sécurité et de conformité. Impact concret sur l'amélioration de la prise en charge des patients. * Remote-first avec reporting direct : Travaille de n'importe où en France avec une équipe qui valorise la confiance, l'autonomie et la collaboration asynchrone. * Un contexte réglementaire rare et stimulant : Tu opères à l'intersection de la sécurité de l'information et des dispositifs médicaux — MDR, SMQ, SMSI, FDA. Un périmètre exceptionnel pour monter en compétence sur des enjeux de premier plan. GDPR : Your personal data will be processed for the purposes of recruitment related activities, which include setting up and conducting interviews and tests for applicants, evaluating and assessing the results thereto, and as is otherwise needed in the recruitment and hiring processes. They will be available only for people involved in the process and erased after 2 years of inactivity. Under GDPR and as Resilience attach great importance to privacy, please note that you have the right to request access to your personal data, to request that your personal data be rectified or erased. The Data Protection Officer can be contacted at privacy@resilience.care For more information, please check our privacy policy.
HEALTH CAN’T WAIT. Not for symptoms to get worse. Not for a six‑month appointment. Not for a system to catch up. But that’s exactly how healthcare works today. You wait, until you can’t. Alan exists to end the wait. Health is a universal right, and we believe this right can only become real when it’s coupled with prevention. We need to stop treating health as something we repair and start treating it as something we build, every day. It’s not solely a question of willpower. It’s the healthcare system itself that needs to work for everyone, in a sustainable way. So we are building the new standard in prevention insurance. Alan is the first company that integrates insurance, prevention, and care into a single, acclaimed user experience. We are on an incredible journey to build a global leading company, with a unique culture. We already partner with 40K+ companies of all sizes, serving more than 1M+ members, and have reached €800M+ in ARR. Prevention as the new norm. That's what we're building with our team of 800+ people. If it speaks to you: we're hiring across France, Spain, Belgium, and Canada. And beyond. THE TEAM AND YOUR MISSIONS You will lead Alan's Security team, a highly technical group operating across 10+ countries in a regulated health insurance environment. As Security Lead, your missions span four core areas: * Lead and grow the security team: Coach, structure, and elevate a team of security experts. Set clear priorities, define ownership, and create conditions for genuine professional growth. * Own security in the AI era: Define Alan's posture on AI-driven threats and opportunities. Build frameworks that let product and engineering teams ship AI-powered features safely and at speed. * Scale security across 10+ countries: Own the ISMS and certification programme (ISO 27001), navigate a complex multi-regulatory environment (DORA, HDS, RGPD, NIS2, PGSSI-S), and ensure Alan's security programme keeps pace with its geographic expansion. * Build and evolve Alan's security strategy: Position security as a long-term business asset and trust-builder for members, regulators, and partners. Align Legal, DPO, Risk, Engineering, and Product on security requirements, and build a security culture that empowers rather than restricts. THE CHALLENGE Alan is a fast-growing health insurer operating in a uniquely complex environment. The challenges you will navigate include: * A shifting threat landscape: AI is reshaping both attack vectors and defensive possibilities. You will need a clear point of view on LLM security, agent risks, and AI governance, and the ability to translate that into concrete, actionable priorities. * Multi-country regulatory complexity: Operating across 10+ countries means managing a dense, evolving regulatory stack (DORA, HDS, RGPD, NIS2, PGSSI-S) while keeping the business moving. You will need to translate regulatory requirements into technical controls without creating bottlenecks. * Health sector specifics: Alan handles sensitive health data at scale. This comes with sector-specific requirements (ANS framework, CERT Santé, HDS) that demand both technical precision and operational rigor. * Influencing at scale without direct authority: Security touches every function. Your ability to align Legal, DPO, Risk, Engineering, Product, and Operations, and make them come to you early, will be as important as your technical depth. * Running security as a living programme, not a compliance exercise: The goal is not to pass audits. It is to build a programme that feeds real decisions, scales with the company, and earns genuine trust. WHO WE ARE LOOKING FOR * Proven experience leading a security (or security-adjacent) team, with concrete examples of people development and growth * At least one full ISO 27001 certification or recertification cycle led end-to-end * Solid understanding of the regulatory stack relevant to Alan's context: DORA, HDS, RGPD, NIS2, PGSSI-S * Experience running security risk cartography, ideally with EBIOS RM- Experience conducting vendor security assessments and defining contractual security requirements * Clear understanding of AI security: LLM threats, agent risks, AI governance frameworks (OWASP LLM Top 10, MITRE ATLAS, EU AI Act) * Full professional fluency in English required; French is a plus * Bonus: experience in a regulated health sector environment (ANS framework, CERT Santé, HDS) This position targets level F+ on our level grid. HOW WE WORK Location: You must be legally eligible to work from France. We offer remote work flexibility, but we value in-person collaboration 🎯 IMPORTANT NOTE: WE HIRE PEOPLE, NOT ROLES. If you're excited about this opportunity but don't check every box, we'd love to hear from you. Everyone, no matter how underrepresented, should feel free to apply, as it can only bring learnings or success. If you identify yourself as a woman: Did you know that research shows women often apply only when meeting 100% of requirements? Remember, this is just a guide, not a checklist. We'll be thrilled to receive your application! 🔖 Check out our About Alan and Career pages, as well as our Medium, blog and Glassdoor page for more info. YOU WANT TO KNOW MORE ABOUT ALAN? 🙌 Perks & Benefits: Alaners are provided with a stimulating environment and perks ensuring they are happy, efficient and spend only high-quality time with co-workers. 🤘A strong culture: People joining Alan are often surprised and delighted by our innovative working method. We have a set of cultural values that guide our approach to work
About Proton Join Proton and build a better internet where privacy is the default Proton was founded in 2014 by scientists from CERN on a simple truth: privacy is a fundamental human right. Since then, we’ve built the world’s largest encrypted email service (Proton Mail) and expanded into Proton VPN, Proton Drive, Proton Pass, and Proton Calendar—tools used by millions globally to protect their freedom, fight censorship, and keep their data safe. In some situations, Proton has literally helped save lives! We are profitable, independent (no VC control), and selectively hire from the top ~1% of applicants. Our 700+ team members across 50+ countries come from leading organizations and elite academic backgrounds. We move fast, keep hierarchy light, and prioritize impact over optics. If you want to do meaningful work with exceptionally high-caliber people, this is it. Join us and do work you can truly be proud of. Check our open-source projects here! Role Overview The Security Analyst will be at the frontline of protecting Proton’s global infrastructure. This role combines analytical threat investigation with practical security engineering, taking a role in running, tuning, and evolving our detection capabilities. You will bridge the gap between day-to-day security monitoring and proactive threat defense. Sitting within our security team, you will not only respond to alerts and manage incidents but actively design the rules, playbooks, and systems that catch attackers before they succeed. We value deep logical reasoning, data-driven intuition, and strong cross-functional communication. What you will do: Threat Detection & SIEM Engineering * Maintain, optimize, and enhance our core security monitoring toolkit (SIEM, sensors, etc.). * Design, build, and continuously refine meaningful alerts, transforming raw infrastructure events into high-fidelity detections. * Proactively identify malicious activities or blind spots within our network and infrastructure that our current toolsets might not cover. Incident Response & Monitoring * Monitor, triage, and deeply investigate security alerts covering all of Proton’s corporate infrastructure. * Own the containment and mitigation of potential security incidents, orchestrating quick and effective response actions. * Develop, document, and test rigorous incident response plans and actionable playbooks to streamline future workflows. Risk Mitigation & System Security * Analyze complex logs, endpoints, and network traffic to isolate anomalies, extract patterns, and identify emerging risks. * Collaborate with engineering teams to deploy and maintain secure architectures, applying server and system security best practices (e.g., OS hardening, strict access controls). * Contribute to continuous posture improvement by feeding operational findings back into security tooling and roadmaps. Governance * Support, advise, and guide the wider company on all security-related matters and emerging risks. * Participate in business process documentation, operational metric reporting, and the strategic automation of security tasks. * Promote a culture of strong IT security awareness and responsible user behavior across our distributed teams. Job requirements * Good logical reasoning, structure, and problem-solving skills. The ability to correlate diverse data sources, extract hidden patterns from massive volumes of data, and think like an attacker. * Solid understanding of system and network security best practices, including network ACLs, authentication mechanisms, and endpoint defense configurations. * Strong working knowledge of Linux-based operating systems, their architectural security components, system calls, and mechanisms like SELinux. * Familiarity with modern malware techniques, attacker tactics (TTPs), and how to translate this threat intelligence directly into actionable SIEM rulesets. * Sound understanding of networking protocols, web technologies, and detection mechanics (eg. EDR, IDS/IPS). * Intermediate-to-advanced proficiency in Python (or similar languages) for scripting, parsing, and automation tasks. * Excellent written and spoken English, paired with strong communication and organizational skills to collaborate smoothly across different teams. * A deep belief in digital privacy. Preferred qualifications * Proven experience (ideally 3-4 years) in a cybersecurity or operations context. * Hands-on experience working with Elastic stack, Vector, or other tools used in large-scale log analysis. * Experience utilizing data analysis tools (such as Jupyter, Pandas) to hunt for anomalies. * Practical knowledge of securing and analyzing containerized workloads (Docker, Kubernetes) and Cloud infrastructure environments. * Experience in leveraging and integrating Threat Intelligence into security workflows. * An industry-recognized security certification is considered a strong asset. Success in This Role * The SIEM environment is highly tuned, resulting in a demonstrable reduction in false positives and a significant increase in high-value, actionable alerts. * Security incidents are quickly contained, thoroughly investigated, and translated into resilient long-term containment strategies and playbooks. * Threat detection coverage expands smoothly to secure new infrastructure, products, and cloud microservices. What We Offer * Work that Matters: millions of people trust Proton with their privacy. We answer only to our users — not advertisers, not investors with conflicting agendas, not governments. The work you do here is real, and the impact is measurable. (read more about our impact here) * Stock Options: at Proton, we all have the opportunity to be owners of the company. From day one, you have a real stake in what we're building. When Proton wins, you win. * Technology: you'll get the right hardware and the right software you need to do your best work. * Learning & Development: we invest in your growth because sharp people make us better. Proton is one of the fastest ways to accelerate your career because you'll be thrown into real challenges, with real ownership, from day one. * Employee Benefits: your wellbeing isn't an afterthought. We offer strong health coverage, solid retirement options, generous leave, and wellness support so you can bring your best self to work every day * In-Person Collaboration: Amazing things happen when passionate, smart, and purposeful people get together in the same room. With offices across Geneva, Zürich, Barcelona, London and more, you'll spend most of your time collaborating face-to-face with people who genuinely care about what they're building * Food: Lunch and snacks are on us every day in our offices so you can focus on the work and not on what's for lunch. * Transport: getting to the office shouldn't cost you. We cover public transport, bike allowances, or parking, whichever works for you. * Flexible Working: you own your schedule. Set hours that work for you and your team — because outcomes matter more than when the clock says you started. Our Commitment to Diversity and Inclusion At Proton, we believe diversity drives innovation and strengthens our mission to provide privacy as a default for all. We are committed to fostering an inclusive environment where all individuals, regardless of race, ethnicity, gender, age, sexual orientation, physical ability, or socio-economic background, feel valued and empowered. We strive to create equal opportunities, promote open dialogue, and support continuous learning to ensure every voice is heard and respected. If you need any extra support or reasonable adjustments during the hiring process, please let your talent partner know. Candidate Privacy Notice When you apply for a position, refer a candidate, or are considered for a role at Proton Technologies AG (Proton, we, us, or our), your information is stored in Greenhouse, in accordance with their Service Privacy Policy. This information is used to evaluate your suitability for the posted position. We also retain this information for consideration for future roles that you may apply for or that we believe may align with your background and skills. If we no longer have a legitimate business need to process your information, we will either delete or anonymize it. Should you have any inquiries about how we use or manage your information, or if you wish to access, correct, or delete your data, please contact our privacy team at careers@proton.ch. Proton does not accept unsolicited resumes from any sources other than directly from candidates. We will not pay a fee for any placement resulting from an unsolicited offer, even if the candidate is subsequently hired by Proton. To learn more about our privacy policy, please visit our privacy policy page. Compensation range Paris: 38.000 - 62.000 gross annually* Other locations: Compensation will be discussed during the interview process *Final compensation will be determined based on the candidate's qualifications, skills, and previous experience #LI-Onsite