
Proton · Paris
About Proton Join Proton and build a better internet where privacy is the default Proton was founded in 2014 by scientists from CERN on a simple truth: privac...
About Proton
Join Proton and build a better internet where privacy is the default
Proton was founded in 2014 by scientists from CERN on a simple truth: privacy is a fundamental human right. Since then, we’ve
built the world’s largest encrypted email service (Proton Mail) and expanded into Proton VPN, Proton Drive, Proton Pass, and
Proton Calendar—tools used by millions globally to protect their freedom, fight censorship, and keep their data safe. In some
situations, Proton has literally helped save lives!
We are profitable, independent (no VC control), and selectively hire from the top ~1% of applicants. Our 700+ team members across
50+ countries come from leading organizations and elite academic backgrounds. We move fast, keep hierarchy light, and prioritize
impact over optics. If you want to do meaningful work with exceptionally high-caliber people, this is it. Join us and do work you
can truly be proud of. Check our open-source projects here!
Role Overview
The Identity and Access Management (IAM) Engineer will play a critical role in designing, implementing, and securing Proton's core
internal identity infrastructure. As we scale globally, maintaining robust access controls and seamless identity governance is
paramount to safeguarding our systems and supporting our growing team across Europe and beyond.
This role bridges modern system engineering, security architecture, and identity lifecycle automation. Sitting within our
technical infrastructure and security ecosystem, you will take ownership of our core IAM stack, which leverages a strong
foundation of self-hosted, open-source technologies (eg. Keycloak, and midPoint) alongside key enterprise solutions like Duo. You
will collaborate closely with cross-functional teams to integrate identity solutions into existing architectures, automate
operational workflows, and design Proton-specific access models that strike the perfect balance between strict zero-trust security
and team velocity.
What you will do
IAM Architecture & Implementation
infrastructure and internal tools.
User Lifecycle & Governance
lifecycle management to ensure seamless onboarding and offboarding.
alignment with organizational compliance standards.
anomalies.
Authentication & Access Control
Automation & Systems Engineering
Job requirements
non-engineering teams.
Preferred qualifications
Success in This Role
infrastructure.
organizational agility.
What We Offer
investors with conflicting agendas, not governments. The work you do here is real, and the impact is measurable. (read more
about our impact here)
we're building. When Proton wins, you win.
accelerate your career because you'll be thrown into real challenges, with real ownership, from day one.
leave, and wellness support so you can bring your best self to work every day
With offices across Geneva, Zürich, Barcelona, London and more, you'll spend most of your time collaborating face-to-face with
people who genuinely care about what they're building
for you.
clock says you started.
Our Commitment to Diversity and Inclusion
At Proton, we believe diversity drives innovation and strengthens our mission to provide privacy as a default for all. We are
committed to fostering an inclusive environment where all individuals, regardless of race, ethnicity, gender, age, sexual
orientation, physical ability, or socio-economic background, feel valued and empowered. We strive to create equal opportunities,
promote open dialogue, and support continuous learning to ensure every voice is heard and respected.
If you need any extra support or reasonable adjustments during the hiring process, please let your talent partner know.
Candidate Privacy Notice
When you apply for a position, refer a candidate, or are considered for a role at Proton Technologies AG (Proton, we, us, or our),
your information is stored in Greenhouse, in accordance with their Service Privacy Policy. This information is used to evaluate
your suitability for the posted position. We also retain this information for consideration for future roles that you may apply
for or that we believe may align with your background and skills.
If we no longer have a legitimate business need to process your information, we will either delete or anonymize it. Should you
have any inquiries about how we use or manage your information, or if you wish to access, correct, or delete your data, please
contact our privacy team at careers@proton.ch.
Proton does not accept unsolicited resumes from any sources other than directly from candidates. We will not pay a fee for any
placement resulting from an unsolicited offer, even if the candidate is subsequently hired by Proton.
To learn more about our privacy policy, please visit our privacy policy page.
Compensation range
Paris: 53.000 - 80.000 gross annually*
Other locations: Compensation will be discussed during the interview process
#LI-Onsite
About Proton Join Proton and build a better internet where privacy is the default Proton was founded in 2014 by scientists from CERN on a simple truth: privacy is a fundamental human right. Since then, we’ve built the world’s largest encrypted email service (Proton Mail) and expanded into Proton VPN, Proton Drive, Proton Pass, and Proton Calendar—tools used by millions globally to protect their freedom, fight censorship, and keep their data safe. In some situations, Proton has literally helped save lives! We are profitable, independent (no VC control), and selectively hire from the top ~1% of applicants. Our 700+ team members across 50+ countries come from leading organizations and elite academic backgrounds. We move fast, keep hierarchy light, and prioritize impact over optics. If you want to do meaningful work with exceptionally high-caliber people, this is it. Join us and do work you can truly be proud of. Check our open-source projects here! Role Overview The Security Analyst will be at the frontline of protecting Proton’s global infrastructure. This role combines analytical threat investigation with practical security engineering, taking a role in running, tuning, and evolving our detection capabilities. You will bridge the gap between day-to-day security monitoring and proactive threat defense. Sitting within our security team, you will not only respond to alerts and manage incidents but actively design the rules, playbooks, and systems that catch attackers before they succeed. We value deep logical reasoning, data-driven intuition, and strong cross-functional communication. What you will do: Threat Detection & SIEM Engineering * Maintain, optimize, and enhance our core security monitoring toolkit (SIEM, sensors, etc.). * Design, build, and continuously refine meaningful alerts, transforming raw infrastructure events into high-fidelity detections. * Proactively identify malicious activities or blind spots within our network and infrastructure that our current toolsets might not cover. Incident Response & Monitoring * Monitor, triage, and deeply investigate security alerts covering all of Proton’s corporate infrastructure. * Own the containment and mitigation of potential security incidents, orchestrating quick and effective response actions. * Develop, document, and test rigorous incident response plans and actionable playbooks to streamline future workflows. Risk Mitigation & System Security * Analyze complex logs, endpoints, and network traffic to isolate anomalies, extract patterns, and identify emerging risks. * Collaborate with engineering teams to deploy and maintain secure architectures, applying server and system security best practices (e.g., OS hardening, strict access controls). * Contribute to continuous posture improvement by feeding operational findings back into security tooling and roadmaps. Governance * Support, advise, and guide the wider company on all security-related matters and emerging risks. * Participate in business process documentation, operational metric reporting, and the strategic automation of security tasks. * Promote a culture of strong IT security awareness and responsible user behavior across our distributed teams. Job requirements * Good logical reasoning, structure, and problem-solving skills. The ability to correlate diverse data sources, extract hidden patterns from massive volumes of data, and think like an attacker. * Solid understanding of system and network security best practices, including network ACLs, authentication mechanisms, and endpoint defense configurations. * Strong working knowledge of Linux-based operating systems, their architectural security components, system calls, and mechanisms like SELinux. * Familiarity with modern malware techniques, attacker tactics (TTPs), and how to translate this threat intelligence directly into actionable SIEM rulesets. * Sound understanding of networking protocols, web technologies, and detection mechanics (eg. EDR, IDS/IPS). * Intermediate-to-advanced proficiency in Python (or similar languages) for scripting, parsing, and automation tasks. * Excellent written and spoken English, paired with strong communication and organizational skills to collaborate smoothly across different teams. * A deep belief in digital privacy. Preferred qualifications * Proven experience (ideally 3-4 years) in a cybersecurity or operations context. * Hands-on experience working with Elastic stack, Vector, or other tools used in large-scale log analysis. * Experience utilizing data analysis tools (such as Jupyter, Pandas) to hunt for anomalies. * Practical knowledge of securing and analyzing containerized workloads (Docker, Kubernetes) and Cloud infrastructure environments. * Experience in leveraging and integrating Threat Intelligence into security workflows. * An industry-recognized security certification is considered a strong asset. Success in This Role * The SIEM environment is highly tuned, resulting in a demonstrable reduction in false positives and a significant increase in high-value, actionable alerts. * Security incidents are quickly contained, thoroughly investigated, and translated into resilient long-term containment strategies and playbooks. * Threat detection coverage expands smoothly to secure new infrastructure, products, and cloud microservices. What We Offer * Work that Matters: millions of people trust Proton with their privacy. We answer only to our users — not advertisers, not investors with conflicting agendas, not governments. The work you do here is real, and the impact is measurable. (read more about our impact here) * Stock Options: at Proton, we all have the opportunity to be owners of the company. From day one, you have a real stake in what we're building. When Proton wins, you win. * Technology: you'll get the right hardware and the right software you need to do your best work. * Learning & Development: we invest in your growth because sharp people make us better. Proton is one of the fastest ways to accelerate your career because you'll be thrown into real challenges, with real ownership, from day one. * Employee Benefits: your wellbeing isn't an afterthought. We offer strong health coverage, solid retirement options, generous leave, and wellness support so you can bring your best self to work every day * In-Person Collaboration: Amazing things happen when passionate, smart, and purposeful people get together in the same room. With offices across Geneva, Zürich, Barcelona, London and more, you'll spend most of your time collaborating face-to-face with people who genuinely care about what they're building * Food: Lunch and snacks are on us every day in our offices so you can focus on the work and not on what's for lunch. * Transport: getting to the office shouldn't cost you. We cover public transport, bike allowances, or parking, whichever works for you. * Flexible Working: you own your schedule. Set hours that work for you and your team — because outcomes matter more than when the clock says you started. Our Commitment to Diversity and Inclusion At Proton, we believe diversity drives innovation and strengthens our mission to provide privacy as a default for all. We are committed to fostering an inclusive environment where all individuals, regardless of race, ethnicity, gender, age, sexual orientation, physical ability, or socio-economic background, feel valued and empowered. We strive to create equal opportunities, promote open dialogue, and support continuous learning to ensure every voice is heard and respected. If you need any extra support or reasonable adjustments during the hiring process, please let your talent partner know. Candidate Privacy Notice When you apply for a position, refer a candidate, or are considered for a role at Proton Technologies AG (Proton, we, us, or our), your information is stored in Greenhouse, in accordance with their Service Privacy Policy. This information is used to evaluate your suitability for the posted position. We also retain this information for consideration for future roles that you may apply for or that we believe may align with your background and skills. If we no longer have a legitimate business need to process your information, we will either delete or anonymize it. Should you have any inquiries about how we use or manage your information, or if you wish to access, correct, or delete your data, please contact our privacy team at careers@proton.ch. Proton does not accept unsolicited resumes from any sources other than directly from candidates. We will not pay a fee for any placement resulting from an unsolicited offer, even if the candidate is subsequently hired by Proton. To learn more about our privacy policy, please visit our privacy policy page. Compensation range Paris: 38.000 - 62.000 gross annually* Other locations: Compensation will be discussed during the interview process *Final compensation will be determined based on the candidate's qualifications, skills, and previous experience #LI-Onsite
Join Proton and build a better internet where privacy is the default At Proton, we believe that privacy is a fundamental human right and the cornerstone of democracy. Since our inception in 2014, founded by a team of scientists from CERN, we have dedicated ourselves to providing free and open-source technology to millions worldwide, ensuring access to privacy, security, and freedom online. Our journey began with Proton Mail, the largest secure email service globally, and has since expanded to include Proton VPN, Proton Calendar, Proton Drive, and Proton Pass. These tools empower individuals and organizations to take control of their personal data, break away from Big Tech’s invasive practices, and defeat censorship. Our work impacts hundreds of millions of lives, from activists on the front lines defending freedom to leaders in governments protecting sensitive information. In some cases, Proton’s services have even been instrumental in saving lives by enabling secure and private communications in high-risk situations. Proton is a profitable company that does not rely upon VC funding, supporting over 100 million user accounts with a growing team of over 500 people from over 50 different countries, from the world's top companies and universities. We value intelligence, learning potential, and ambition in our hiring process. Adaptability is key as we navigate uncharted territories and redefine how business is conducted online. Hiring at Proton is highly selective, with less than 1% of candidates hired. We believe smaller teams of exceptional talent will always prevail over larger teams with lower talent density. You will have the opportunity work with many of the world's top minds in their fields, ranging from former international math and science olympiad winners to chess champions. We have a global mindset and big ambitions but remain a start-up at heart. We value empowerment and flexibility and keep our structure flat to keep moving fast and avoid unnecessary politics. Tired of blending into the crowd? Join us and do work you can truly be proud of. Check our open-source projects here! The Team The Security Machine Learning Engineer will play a key role in transforming our Security Operations Center (SOC) from reactive to proactive by integrating advanced machine learning and data-driven approaches into our detection and response workflows. This role bridges traditional cybersecurity operations and modern ML-driven analytics, enabling our team to automatically identify emerging threats, anomalous behaviour, and new attack patterns at scale. As a secondary focus, the role could also leverage LLMs and AI engineering to automate analyst workflows and reduce operational toil. The engineer will sit directly within the security team, ensuring that the solutions built are operationally relevant, and aligned with our security priorities, while also working closely with the internal Machine Learning team (MSA) to leverage their expertise and best practices. What you will do: * ML-Driven Detection & Automation * Design, develop, and deploy machine learning models to enhance security detection, anomaly identification, and incident response. * Integrate ML outputs into the SOC workflow to enable smarter and faster triage. * Continuously evaluate and tune models to reduce false positives and improve detection precision. * Ensure model outputs are interpretable and actionable for SOC analysts. Data Engineering for Security * Build and maintain data pipelines to collect, process, and transform security-relevant data (e.g., logs, network traffic, endpoint events) into ML-ready datasets. * Collaborate with security engineering team to ensure scalable and secure data handling (eg. parsing, processing, storage). AI Engineering & LLM-Powered Automation * Explore and build LLM-powered tools to automate repetitive SOC tasks (e.g., alert triage, evidence gathering, incident summarisation, report generation). * Apply appropriate guardrails and evaluation to ensure outputs are accurate, auditable, and safe to act on in operational contexts. Research & Innovation * Stay current on advancements in security data science, adversarial ML, and automated threat detection. * Prototype and test new ML and AI techniques (e.g., unsupervised anomaly detection, graph-based threat correlation). * Contribute to improving detection content through statistical analysis and clustering. Operations & Maintenance * Deploy models into production securely and responsibly, ensuring reliability and scalability. * Implement monitoring, alerting, and retraining mechanisms for deployed ML models. * Document methodologies and performance metrics for auditability and knowledge sharing. What we are looking for: * Required * Proven experience in machine learning engineering or data science, ideally in a cybersecurity or operations context. * Proficiency in Python, with strong knowledge of ML frameworks. * Experience with data manipulation and analysis using Pandas, NumPy or similar tools. * Familiarity with security data sources (e.g., SIEM logs, EDR telemetry, network flow, authentication logs). * Solid understanding of ML lifecycle: data preparation, model training, evaluation, deployment, and monitoring. * Experience with data pipelines and storage technologies (e.g., Airflow, Kafka, Redis, Elasticsearch, Clickhouse, etc.). * Ability to work independently and collaborate effectively with both ML and security specialists. Preferred * Prior experience in threat detection, SOC operations, or security automation. * Knowledge of adversarial ML, graph analytics, or behavioral modeling in security contexts. * Experience integrating ML models into SIEM pipelines or automated detection frameworks. * Exposure to LLMs and AI engineering (e.g., prompt engineering, RAG, agent design), and awareness of LLM-specific risks like prompt injection and data leakage. Success in This Role * SOC analysts leverage ML-powered detections to identify threats faster. * Reduction in alert fatigue and false positives through adaptive and data-driven models. * Strong collaboration established between the security and MSA ML teams, sharing expertise and best practices. * Security data becomes more accessible, structured, and usable for analytical and predictive use cases. * New, intelligent detections, enrichment, and incident response automations become part of the SOC’s standard toolkit. Even if you don’t meet all the requirements listed above, but feel you could still be a great fit, please still apply. What We Offer: * Work that Matters: millions of people trust Proton with their privacy. We answer only to our users — not advertisers, not investors with conflicting agendas, not governments. The work you do here is real, and the impact is measurable. (read more about our impact here) * Technology: you'll get the right hardware and the right software you need to do your best work. * Learning & Development: we invest in your growth because sharp people make us better. Proton is one of the fastest ways to accelerate your career because you'll be thrown into real challenges, with real ownership, from day one. * Employee Benefits: your wellbeing isn't an afterthought. We offer strong health coverage, solid retirement options, generous leave, and wellness support so you can bring your best self to work every day * Stock Options: at Proton, we all have the opportunity to be owners of the company. From day one, you have a real stake in what we're building. When Proton wins, you win. * In-Person Collaboration: Amazing things happen when passionate, smart, and purposeful people get together in the same room. With offices across Geneva, Zürich, Barcelona, London and more, you'll spend most of your time collaborating face-to-face with people who genuinely care about what they're building * Food: Lunch and snacks are on us every day in our offices so you can focus on the work and not on what's for lunch. * Transport: getting to the office shouldn't cost you. We cover public transport, bike allowances, or parking, whichever works for you. * Flexible Working: you own your schedule. Set hours that work for you and your team — because outcomes matter more than when the clock says you started. Our Commitment to Diversity and Inclusion At Proton, we believe diversity drives innovation and strengthens our mission to provide privacy as a default for all. We are committed to fostering an inclusive environment where all individuals, regardless of race, ethnicity, gender, age, sexual orientation, physical ability, or socio-economic background, feel valued and empowered. We strive to create equal opportunities, promote open dialogue, and support continuous learning to ensure every voice is heard and respected. If you need any extra support or reasonable adjustments during the hiring process, please let your talent partner know. Candidate Privacy Notice When you apply for a position, refer a candidate, or are considered for a role at Proton Technologies AG (Proton, we, us, or our), your information is stored in Greenhouse, in accordance with their Service Privacy Policy. This information is used to evaluate your suitability for the posted position. We also retain this information for consideration for future roles that you may apply for or that we believe may align with your background and skills. If we no longer have a legitimate business need to process your information, we will either delete or anonymize it. Should you have any inquiries about how we use or manage your information, or if you wish to access, correct, or delete your data, please contact our privacy team at careers@proton.ch. Proton does not accept unsolicited resumes from any sources other than directly from candidates. We will not pay a fee for any placement resulting from an unsolicited offer, even if the candidate is subsequently hired by Proton. To learn more about our privacy policy, please visit our privacy policy page. Compensation range Paris: 46.000 - 74.000 gross annually* Other locations: Compensation will be discussed during the interview process *Final compensation will be determined based on the candidate's qualifications, skills, and previous experience #LI-ONSITE
Qube Research & Technologies (QRT) is a global quantitative and systematic investment manager, operating in all liquid asset classes across the world. We are a technology- and data-driven group implementing a scientific approach to investing. Combining data, research, technology, and trading expertise has shaped our collaborative mindset, which enables us to solve the most complex challenges. QRT’s culture of innovation continuously drives our ambition to deliver high-quality returns for our investors. You will join the Security team, responsible for protecting systems, data, and access across the organisation. The team works closely with application owners, IT Engineering, HR, and Security stakeholders to design and operate secure, automated identity and access management processes across enterprise platforms. Your Future Role within QRT * Identity Lifecycle Management * Design, implement, and maintain automated processes for user provisioning, modification, and deprovisioning. * Ensure alignment between identity lifecycle policies and organisational access control requirements. * Integrate IAM solutions with HR systems, directories, cloud platforms, and enterprise applications. * Drive automation to eliminate manual identity and access management processes. * Application Integration & Identity Engineering * Design, develop, and maintain custom identity integrations, including SCIM 2.0 provisioning bridges. * Build and maintain connectors between IAM platforms and enterprise applications (cloud and on premises). * Engineer integration solutions for applications that do not natively support modern identity standards (SCIM, SAML, OIDC, REST APIs). * Facilitate redesign or refactoring of legacy or non-integrated applications to enable automated lifecycle management. * Develop middleware, APIs, or automation services to ensure secure identity data exchange. * Contribute to application architecture discussions to ensure identity and access integration requirements are embedded by design. * Troubleshoot and optimise identity integrations across the enterprise. * IAM Platform & Tooling Management * Configure, maintain, and enhance IAM platforms (SailPoint ISC). * Develop custom rules, workflows, connectors, and extensions within the IAM platform. * Monitor platform performance and proactively resolve system issues. * Collaborate with vendors and internal engineering teams to optimise IAM capabilities. * Security and Risk Management * Support risk assessments related to identity governance and application access. * Contribute to identity management policies, standards, and architectural guidelines. * Respond to identity-related incidents and support root cause analysis. * Ensure secure coding and integration practices are followed across identity engineering work. * Continuous Improvement & Innovation * Stay informed on industry trends, identity standards, and emerging IAM technologies. * Recommend enhancements to improve governance maturity and reduce operational overhead. * Participate in cross-functional engineering initiatives to expand identity automation capabilities. * Promote identity-as-code and infrastructure-as-code approaches where appropriate. Your Present Skillset * Bachelor’s degree in computer science, Information Security, Software Engineering, or related field. * 5+ years of experience in IAM Engineering or Application Integration Engineering. * Strong software engineering background with experience building production-grade integrations. * Hands-on experience with IAM platforms such as SailPoint (IIQ or ISC) or similar. * Proven experience developing SCIM 2.0 integrations and custom provisioning connectors. * Strong experience working with REST APIs, JSON, OAuth2, SAML, OIDC, and modern authentication protocols.Experience integrating identity solutions with cloud and on-prem enterprise applications. * Experience redesigning or enabling identity integration for non-integrated or legacy applications. * Strong scripting and automation skills (e.g., Python, PowerShell). * Experience with version control systems (e.g., Git) and CI/CD pipelines. * Solid understanding of RBAC, ABAC, SSO, MFA, and directory services (AD/Azure AD). * Familiarity with security and compliance standards (ISO 27001, SOX, GDPR). * Excellent problem-solving, analytical, and communication skills. * Preferred * Experience contributing to application codebases to enable identity integration. * Experience building middleware or identity proxy services. * Knowledge of containerisation (Docker/Kubernetes) and cloud-native integration patterns. * Exposure to DevSecOps practices. * Financial services industry experience. * CISSP, CISM, or equivalent security certification. * IAM-specific certifications (e.g., CIAM, SailPoint Certified Implementation Engineer). * SailPoint certifications (IIQ or ISC). QRT is an equal opportunity employer. We welcome diversity as essential to our success. QRT empowers employees to work openly and respectfully to achieve collective success. In addition to professional achievement, we are offering initiatives and programs to enable employees achieve a healthy work-life balance.