Security Engineer – Full Remote (France) or Hybrid

Company Description

✨ About Voyage Privé

Born in France in 2006, Voyage Privé has grown from an ambitious startup into becoming the Europe’s leading travel tech platform. Operating across 9 markets with tens of millions of users, we’re not just another e-commerce success story – we’re a tech powerhouse revolutionizing online travel.

What makes us unique? A mission-driven culture where performance meets impact. Our innovative campus brings together tech talent, professional athletes, students, and artists, creating an ecosystem where digital innovation drives both business growth and positive change.

We’re now at an inflection point, upgrading our entire technical foundation with cloud architecture, AI, and real-time systems to become a reference and top-of-mind platform for luxury travel, known by travelers for its for excellent offer and customer experience, and by our providers as a high-performance business development partner. 

Job Description

🎯 Your Mission

As a Security Engineer, you’ll play a key role in shaping the security and resilience of Voyage Privé’s technology platform.
You’ll work closely with Engineering, Product, and Platform teams to embed security practices into every stage of product development, deliver measurable impact, and help us scale efficiently while maintaining a strong security posture.

You’ll have the opportunity to build many security foundations from scratch — from internal tooling to CI/CD guardrails — and influence key architectural and technical decisions as we redesign our platform for scale.

Your key responsibilities will include:

• Strengthen the security posture across products, data and infrastructure: secure coding practices, code reviews, threat modeling, vulnerability remediation, cloud, and network hardening.
• Develop automated security guardrails integrated into CI/CD pipelines (SAST, SCA, secrets scanning).
• Design secure architectures for applications, APIs, data flows, and integrations in partnership with engineering teams.
• Secure hybrid environments combining virtual machines, containerized workloads, and cloud-native services, ensuring consistent security standards across the entire platform.
• Drive proactive risk identification through continuous scanning, threat modeling sessions, risk assessments, and architecture reviews.
• Enable engineering teams to build secure-by-design practices by acting as a trusted advisor, developing internal tools, and leading security awareness sessions.
• Operational security & incident readiness: participate in on-call rotations, investigate security events, and improve incident response workflows.
• Lead security improvement projects: build automation, enhance tools, optimize processes, and foster a culture of security ownership.

Qualifications

💡 What We’re Looking For

We’re looking for builders who move fast, think big, and care deeply about creating impact that lasts

Your profile:

• 5–7 years of experience in software engineering, security engineering, DevSecOps, or equivalent technical security roles.
• Strong development background (Python, Node.js, Java, Go, PhP or similar).
• Hands-on experience with modern CI/CD systems (GitHub Actions, GitLab, Jenkins).
• Solid understanding of cloud security principles (AWS, GCP, Azure).
• Experience securing both virtualized systems (VMs) and containerized workloads.
• Strong knowledge of secure coding, OWASP Top 10, and application security fundamentals.
• Experience with SAST, SCA, container/IaC scanning, runtime security tools, IAM, and secrets management.
• Pragmatic, engineering-first mindset: able to balance security with developer experience, velocity, and real-world constraints.
• Excellent communication skills: able to translate complex security issues into actionable guidance for both technical and non-technical stakeholders.
• Proactive, autonomous, critical thinker with a continuous improvement mindset.
• Nice to have: previous experience or knowledge of compliance requirements (GDPR, PCI-DSS…) 
• Fluent in French and English.

Additional Information

⚡ Our Recruitment Process

We believe in a fast, transparent, and human recruitment process.

Here’s what you can expect:

• Intro Call with a Talent Acquisition Partner (30–45 min) – Get to know each other! We’ll share more about the role, the team, and our culture.
• Manager Interview (60 min) – Deep dive into your experience, missions, and ways of working.
• Take-Home Task – Practical exercise to showcase your strategic thinking and approach to security.
• Task Debrief (60 min) – Discuss your task with members of the team
• On-Site Interview (60 min) – Meet the VP of Engineering to align on expectations, culture, and long-term impact.

📍Location : Aix en Provence or remote, France
📅 Start Date : The sooner, the better 
📄 Contract Type : Full-time / Permanent

❤️ You’ll Love Joining Us 
Our HQ in the South of France offers an exceptional environment – natural, cultural, and digital – on a modern and eco-responsible campus. 
🌴 Prefer flexibility? We offer a hybrid model for all other positions with 3 mandatory on-site days per week plus 4 fully remote weeks per year.
🤝Put meaning back into your work and join a unique ecosystem that connects worlds often far apart: business, sports, education, and social impact, through projects like Ecole des XV, Provence Rugby, VP Green, Les Tremplins, and Chez Pierre. 
💪 Forget your gym subscription! Access our large on-site fitness center morning, noon, and night – or challenge your colleagues to a padel match on our private court. 
🎉 Live to the rhythm of Voyage Privé’s signature mix of business and fun: Company Breaks, Carnival, Annual Convention, meetups and talks… plus free tickets to every Provence Rugby home match and live music nights at the Dalida Institute. 
✈️ And because travel is in our DNA : enjoy up to 20% off our exclusive getaway offers. 
Join us and make your next career move a journey worth taking. 🌍