Senior Security Engineer
København, Hovedstaden, Denmark
Too Good To Go
The app that lets customers rescue unsold food from shops and restaurants to save it from going to waste. Try it today.At Too Good To Go, we have an ambitious goal: to inspire and empower everyone to fight food waste together.
40% of all food produced in the world is wasted. And that has a huge impact on the health of our planet, with 10% of greenhouse gas emissions coming from food waste.
We’re more than an app: we are a certified B Corporation with a mission to empower everyone to take action against food waste, so alongside our marketplace app, we create educational tools, explore new business solutions - such as our Retail Technologies offering, and influence legislation to help reduce food waste.
We’re growing fast: Our community of 94 million registered users and 220,000 active partners across 18 countries, have together already prevented 328+ million meals from going to waste - avoiding over 887,000 tonnes of CO2e!
Your mission
We are looking for a Senior Security Engineer to support the global Information Security Officer (ISO) in enhancing the security standards across Too Good To Go. You will be the technical mind behind creating and implementing policies and processes that will protect the security & compliance of our organisations' data, systems & infrastructure.
This role presents a unique opportunity for transformation, requiring a combination of passion, vision, long-term strategic planning, and decisiveness in navigating ambiguities. An engineering mindset will be required to deliver high quality solutions.
The Role
- Define and implement well-documented security policies to secure our data, systems and computing infrastructure.
- Manage 3rd party contracts (with friendly hackers & Penetration test providers) who proactively secure our business against realistic threats and identify system weaknesses before hackers have the opportunity to do damage.
- Take initiatives to remain up-to-date with any developments within cyber security, standards and threats.
- Ensuring maximum compliance with security policies.
- Partner with the wider technical team to strengthen and improve the security of Too Good To Go.
- Analyse and report any security breaches, assessing and documenting their damage.
- Sharing expertise with the wider organisation, with both technical and non-technical colleagues.
- Implement and maintain tools to identify and automate response to malicious activity with enhancements to refine incident response procedural documentation as needed.
- Build strong relationships with technical teams across all business functions to harden account, platform, and service structures to combat intrusions, compromises, and disruptions and further collaborate with cross-functional teams to implement security best practices and standards.
- Implement technical recommendations that mature incident response and digital forensics capabilities.
- Establish an understanding of Too Good To Go’s entire production environment, from applications to infrastructure, keeping up-to-date with material changes and future directions.
- Drive security alert development, rule tuning, and testing of configured alerts and thresholds.
- Own incident response plans, tabletop testing, and technical exercises.
- Provide security review and oversight of engineering and devops activities, including proposed changes and operations.
- Stay current with industry trends, emerging threats, and cybersecurity technologies to enhance the organization's security posture.
Requirements
- A problem solver who is determined to get to the root of an issue.
- Detail-oriented, with a strong analytical mind and an awareness of the importance of strong documentation.
- Natural ability to educate a non-technical audience about various security measures.
- A proven track record of improving enterprise and operational security as the business scales, driving continuous improvement through data collection, correlation, and control enhancements.
- Passionate and relentless about building a new security program.
- Interpersonal and written communication skills, including the ability to produce technical documentation, standard operating procedures, and security standards.
- Direct experience developing and securing cloud infrastructure and applications.
- Experience with incident response processes in devops, devsecops, application security, and/or cloud security.
- Strong understanding of common security platforms (SIEM, EDR, IAM, WAF, Vulnerability detection tools, etc.), and key AWS services (EC2, S3, EKS, RDS, cloudwatch, guarduty, etc.).
- Extensive experience in cybersecurity operations.
- Advanced skills in security analysis tools and techniques.
- Proven ability to manage multiple projects and initiatives simultaneously, meeting deadlines and delivering high-quality results.
- We win together: Food waste is a big beast to fight. We believe in a #oneteam.
- We raise the bar: We always push for more. We work smart, smash barriers and elevate one another.
- We keep it simple: Our ambitions are bold but our solutions are simple.
- We build a legacy: We’re proud of the change we’re driving.
- We care: We always look out for each other. Caring is also about the way we do business. We do the right thing.
What We Have To Offer
- An opportunity to work in a global social-impact company and certified B Corporation! where you can see a real and tangible impact in your role.
- To be an integral member of our defined product teams. We are eager for you to make an impact and contribute to the product scope and development; Your insights are valuable, and we are here to listen.
- Work-life balance is important to us! Focus on the job to be done, not the hours spent, there is no need for overtime. On-call duty is not part of the job, but can be additionally agreed upon should you and your manager both wish it. We believe that happy environments create happy employees.
- We trust in our employees and encourage an autonomous environment that provides several opportunities for employees to contribute, develop and take ownership of their work in a way that works for them.
- To be part of an international company, with over 1,200+ colleagues across 18 countries that are on the same important mission.
- An informal environment, working alongside a tech team of over 90 passionate people, we celebrate our differences and our successes and have a strong values-driven team culture.
- We work onsite in the office 3 days per week.
- We may be able to support you with a working visa in Copenhagen, please be prepared to discuss this topic further as your first stage interview.
How to apply
- We take recruitment very seriously, so please carefully read everything we have written above. Please also check our website and international media in order to get a good overview of Too Good To Go.
- Submit your CV and Cover letter in English.
- Please note that we only accept applications coming through our platform. No CV or Cover Letter will be accepted by email or LinkedIn direct messaging.
Job Ref: #LI-TC1
#LI-Hybrid
A Movement for Everyone
We want to inspire and empower everyone to fight food waste together. With that mission, it’s only natural that we want to build a diverse and inclusive team of highly capable individuals who are passionate about doing things in a better way. We strongly believe we all excel and are more creative when we’re allowed to be ourselves, and we’re committed to a culture where all of us belong.
We are an equal opportunity employer and all employment is decided on the basis of qualifications, merit and business need. If you need reasonable accommodation at any point in the application or interview process, please let us know.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS Cloud Compliance DevOps DevSecOps EC2 EDR Forensics IAM Incident response S3 Security analysis SIEM
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs