Security Architect

**We're making the world of digital assets accessible and secure for everyone. Join the mission.**

Founded in 2014, Ledger is the global platform for digital assets and Web3. Over 20% of the world’s crypto assets are secured through our Ledger Nanos. Headquartered in Paris and Vierzon, with offices in UK, US, Switzerland and Singapore, Ledger has a team of more than 900 professionals developing a variety of products and services to enable individuals and companies to securely buy, store, swap, grow and manage crypto assets - including the Ledger hardware wallets line with more than 6 millions units already sold in 200 countries.

The Security Architect role at Ledger represents the cornerstone of our cybersecurity framework, serving as the definitive expert and go-to resource for all matters related to network architecture, segmentation, isolation, systems hardening and security framework expert. Tasked with the critical responsibility of designing and refining the security infrastructure that underpins Ledger's operations, this position demands a visionary approach to creating scalable, resilient, and robust security solutions.

As a key architect behind Ledger's security strategy, you will lead the development of comprehensive security frameworks and architectures, ensuring our defenses are impenetrable and ahead of emerging cybersecurity threats.

This role is ideal for someone who is deeply passionate about cybersecurity, with a specific focus on network security's strategic aspects, looking to make a substantial impact on the security posture of a leader in the Web3 and hardware wallet spaces.

**Your mission**:

- Develop and and integrate cybersecurity designs for systems and networks with security requirements
- Conduct proofs of concept and implement security solutions
- Develop cybersecurity architecture guidelines and ensure systems that are acquired or developed are consistent with those designs
- Perform security reviews, identify gaps in security architecture and develop a security risk management plan for the infrastructure (Cloud, IT and on-perm)
- Perform threat modeling with teams to ensure architecture is developed securely
- Represent security in enterprise-level policy creation and governance around cloud security (AWS, K8s)
- Mentor Infrastructure engineers on cloud & architecture security best practices and to advocate for security requirements in their respective teams
- Support and mentor the SIEM Threat Detection Engineer in advancing SIEM & SOAR capabilities by integrating actionable new streams of security insight

**What we’re looking for**:

- 8+ years of experience in cybersecurity, designing and implementing secure architecture, both cloud, on-prem.
- Expertise in IAM design, ZTNA, access control architectures.
- Expertise in implementing and overseeing Secure Software Development Lifecycle (SSDLC) practices across an organization
- Familiarity with security and compliance frameworks such as NIST, CIS, ISO 27001, SOC 2 type 2, GDPR or ideally SLSA.
- Experience with API security
- Excellent presentation and written communication skills.

**What’s in it for you?**:

- **Equity**: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow.
- **Flexibility**: A hybrid work policy.
- **Social**: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
- **Medical**: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage.
- **Well-being**: Personal development, coaching & fitness with our dedicated partners.
- **Vacation**: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days.
- **High tech**: Access to high performance office equipment and gadgets, including Apple products.
- **Transport**: Ledger reimburses part of your preferred means of transportation.
- **Discounts**: Employee discount on all our products.
- We are an equal opportunity employer for all without any distinction of gender, ethnicity, religion, sexual orientation, social status, disability or age._

LI-HG #LI-Hybrid