Senior Security Engineer - SecOps (x,f,m)

Set a new pulse for healthcare! We are looking for a Senior Security Engineer to join the SecOps team at Doctolib. Your mission will be to protect the infrastructure, identities, devices and platform that millions of patients and hundreds of thousands of health professionals rely on every day. You will work hands-on across the full corporate IT security perimeter (identity, endpoint, SaaS, network and cloud) in a highly regulated environment (HDS, ISO 27001, C5) where security directly impacts patient safety and trust in the healthcare system. Working in the tech team at Doctolib means building innovative products and features to improve the daily lives of care teams and patients. What you'll do Your responsibilities include but are not limited to: Design and ship security changes as code, reviewed in pull requests like any production change, across our identity, endpoint, SaaS and network security stack Build detections, dashboards and automated responses on top of our SIEM (Elastic), writing queries and continuously tuning alert quality Drive corporate IT security programs from architecture to enforcement spanning Entra ID, CrowdStrike, Wiz, and Cloudflare Investigate security incidents end-to-end and iterate on playbooks with each resolution cycle Write proposals and run cross-team change management on major security initiatives, ensuring robust communication with stakeholders Mentor junior engineers and contribute to platform security topics when initiatives span both the corporate and product perimeters Who you are Before you read on: if you don't have the exact profile described below, but you feel this job description matches your skill set, we still encourage you to apply. You'll be a great fit if you: Have 5+ years of hands-on experience in corporate, including at least 2 years at a senior level, with end-to-end ownership of multiple security domains (identity, endpoint, SaaS, network or detection) in production Have strong daily mastery of GitHub, Terraform and AI coding assistants (Claude or equivalent) — you ship security work as code reviewed in PRs, and you use AI agents as a structural part of your workflow, not as an occasional helper Have a solid detection engineering and SIEM background, and are comfortable writing queries and tuning alerts independently Bring a pragmatic mindset and strong written communication skills, with the ability to make decisions under uncertainty and follow through on complex, cross-team initiatives Are fluent in English (primary written working language); daily team conversations happen mostly in French , so being a French speaker or willing to learn is a strong plus It would be fantastic if you: Have curiosity for platform security topics (cloud, Kubernetes, supply chain) and a willingness to contribute beyond your core corporate IT perimeter Bring prior experience in a regulated industry such as healthcare, fintech or the public sector Life at Doctolib Tech Our solutions are built on a single fully cloud-native platform that supports web and mobile app interfaces, multiple languages, and is adapted to country and healthcare specialty requirements. Our stack is composed of Rails, TypeScript, Java, Python, Kotlin, Swift, and React Native. We leverage AI ethically across our products to empower patients and health professionals. Discover our AI vision here . Want to learn more about our tech culture and environment? Visit the Doctolib Tech site . What we offer Free comprehensive health insurance (basic package) for you and your children 25 days of paid vacation per year, plus up to 14 days of RTT Free mental health and coaching services through our partner Moka.care Work from abroad for up to 10 days per year thanks to our flexibility days policy Lunch vouchers (Swile card) worth €8.50 per working day, with €4.50 covered by Doctolib A subsidy from the work council to refund part of the membership to a sport club or a creative class 50% reimbursement of your public transport subscription Parent Care Program: receive one additional month of leave on top of the legal parental leave Enrollment in Doctolib's long-term employee value sharing plan called DoctoGrowth For caregivers and workers with disabilities, a package including an adaptation of the remote policy, extra days off for medical reasons, and psychological support Relocation support in case of international mobility Access to the best AI tools for coding, development and dedicated training Our interview process TA Screening Technical Deep Dive with a take-home case study and debrief session Behavioral Interview Final Conversation with the Head of SecOps At least one reference check We want your experience to be clear, respectful, and transparent. Learn more about our hiring process on our candidate experience page . Job details Permanent position Tech stack: Elastic, Entra ID, CrowdStrike, Wiz, Cloudflare, GitHub, Terraform Full-time Paris, France Hybrid work setup (up to 2 remote days per week) Start date: as soon as possible We welcome everyone At Doctolib, we are committed to improving access to healthcare for everyone. This translates into our recruitment process. We evaluate candidates based solely on qualifications and motivation, without any form of discrimination. The more diverse ideas are heard, the more our product will truly improve healthcare for all. You are welcome to apply to Doctolib, regardless of your gender, religion, age, sexual orientation, ethnicity, or disability. To ensure equal opportunities, we invite you to exclude personal information (e.g., pictures, age) from your applications. If you require any accommodation, please let us know for support during the hiring process. Join us in building the healthcare we all dream of! Your data privacy All information provided is processed by Doctolib for application management. For data processing details, click here: France . Please contact hr.dataprivacy(at)doctolib.com for inquiries or to exercise your rights.