📍 Job Overview

• Job Title: Senior Site Reliability Engineer - Blue Team
• Company: Criteo
• Location: Paris, Île-de-France, France
• Job Type: Full-Time (Remote OK)
• Category: DevOps, Infrastructure
• Date Posted: 2025-06-20
• Experience Level: 5-10 years
• Remote Status: Remote (with Paris, Île-de-France, France as the primary time zone)

🚀 Role Summary

• Lead security operations for Criteo's extensive infrastructure, consisting of over 40,000 servers and a diverse technology stack.
• Blend reactive and proactive security measures to ensure the safety and integrity of systems.
• Collaborate with cross-functional teams managing infrastructure and platforms, and support the compliance team in their security-related tasks.

📝 Enhancement Note: This role requires a strong background in security operations, incident response, and threat intelligence to protect Criteo's vast and complex infrastructure.

💻 Primary Responsibilities

• Vulnerability and Incident Management:

  • Engage in threat intelligence activities to detect new patterns and attacks.
  • Stay updated with CVEs (Common Vulnerabilities and Exposures) and trigger response plans when necessary.
  • Respond to security incidents, coordinate responses with multiple teams, handle reporting, and manage escalations.

• Proactive Security Projects:

  • Lead hardening efforts across the infrastructure and platforms.
  • Support and review platform and infrastructure design with a security focus.
  • Develop and implement strategies and solutions to prevent incidents and vulnerabilities from impacting systems.

• Detection Engineering:

  • Craft new detection mechanisms to identify anomalies and potential threats.
  • Utilize the SIEM system built on ElasticSearch for monitoring and analysis.

• Automation and Scripting:

  • Leverage coding skills to build automation tools and scripts to enhance security operations.

• Collaboration:

  • Work closely with teams managing the infrastructure and platform.
  • Maintain client/provider relationships with the Security Yellow team to ensure the right tools are in place.
  • Support the compliance team in their mission, providing security insights and assistance.

🎓 Skills & Qualifications

Education: Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent practical experience).

Experience: Proven experience in threat intelligence, incident response, and vulnerability management.

Required Skills:

• Experience with SIEM systems, particularly ElasticSearch.
• Coding and scripting capabilities for automation (languages such as Python, Go, Bash, etc.).
• Strong analytical skills to assess and respond to security threats.
• Effective verbal and written communication skills for collaboration and reporting.

Preferred Skills:

• Familiarity with hybrid cloud and on-premise environments.
• Knowledge of security best practices and industry standards.
• Ability to influence without authority to drive security best practices.
• Excellent organizational skills to manage multiple tasks and incidents effectively.
• Perseverance in continuously improving security measures and tackling complex challenges.

📊 Web Portfolio & Project Requirements

• Portfolio Essentials:

  • Case studies demonstrating incident response, threat intelligence, and vulnerability management.
  • Examples of automation tools and scripts developed to enhance security operations.
  • Documentation showcasing security best practices and industry standards implementation.

• Technical Documentation:

  • Code quality, commenting, and documentation standards for security-related projects.
  • Version control, deployment processes, and server configuration for security tools and systems.
  • Testing methodologies, performance metrics, and optimization techniques for security solutions.

📝 Enhancement Note: While a portfolio of security projects is not explicitly required, demonstrating relevant experience and skills through case studies and examples will strengthen your application.

💵 Compensation & Benefits

Salary Range: €70,000 - €90,000 per year (based on market research for senior security roles in Paris, France)

Benefits:

• Comprehensive health insurance
• Retirement savings plan with company matching
• Generous vacation and leave policies
• Employee stock purchase plan
• Professional development opportunities and training
• Flexible work arrangements and remote work options

Working Hours: Full-time (40 hours/week) with flexible hours and the option to work remotely. Maintenance windows and project deadlines may require occasional evening or weekend work.

📝 Enhancement Note: The salary range provided is an estimate based on market research for senior security roles in Paris, France. Actual compensation may vary depending on factors such as experience, skills, and performance.

🎯 Team & Company Context

🏢 Company Culture

Industry: Advertising technology and commerce media

Company Size: Approximately 3,600 employees worldwide, with a diverse and inclusive culture that values exploration, collaboration, and continuous learning.

Founded: 2005, with a strong focus on innovation, data-driven decision making, and empowering marketers to deliver richer consumer experiences.

Team Structure:

• The security group consists of approximately 20 members, divided into three teams: a compliance team, a yellow team, and a blue team.
• The blue team, focused on security operations, is divided into three specialized pods: Application Security, Digital Workplace, and Platform & Infrastructure.
• This position will report to the Devlead and collaborate closely with cross-functional teams managing infrastructure and platforms, and support the compliance team in their security-related tasks.

Development Methodology:

• Agile and iterative development processes, with a focus on continuous improvement and collaboration.
• Regular code reviews, testing, and quality assurance practices to ensure the security and stability of systems.
• Deployment strategies, CI/CD pipelines, and server management to maintain a secure and performant infrastructure.

Company Website: Criteo

📝 Enhancement Note: Criteo's culture encourages exploration, collaboration, and continuous learning, providing a supportive environment for security professionals to grow and make a significant impact on the company's infrastructure.

📈 Career & Growth Analysis

Security Operations Career Level: This role is suited for a senior security professional with 5-10 years of experience in threat intelligence, incident response, and vulnerability management. The primary responsibility is to lead security operations, drive security best practices, and collaborate with cross-functional teams to ensure the safety and integrity of Criteo's extensive infrastructure.

Reporting Structure: The Senior Site Reliability Engineer - Blue Team will report to the Devlead and collaborate closely with cross-functional teams managing infrastructure and platforms, as well as the compliance team.

Technical Impact: This role has a significant impact on Criteo's infrastructure, platforms, and overall security posture. By leading security operations, driving proactive security projects, and collaborating with cross-functional teams, the Senior Site Reliability Engineer - Blue Team plays a crucial role in protecting Criteo's systems and data.

Growth Opportunities:

• Team Leadership: With experience and proven performance, there is potential for growth into a team leadership role, managing a team of security operations professionals.
• Specialization: Pursue deeper expertise in specific areas of security operations, such as threat intelligence, incident response, or detection engineering.
• Cross-functional Collaboration: Expand your influence by working closely with other teams, such as application security, digital workplace, or compliance, to drive security best practices across the organization.

📝 Enhancement Note: Criteo offers opportunities for career growth and specialization within the security operations team, as well as the potential to expand influence through cross-functional collaboration.

🌐 Work Environment

Office Type: Criteo's offices are designed to foster collaboration, creativity, and well-being, with a mix of open spaces, meeting rooms, and quiet areas for focused work.

Office Location(s): Criteo's headquarters are in Paris, Île-de-France, France, with additional offices worldwide. Remote work is supported and encouraged.

Workspace Context:

• Collaboration: Criteo's offices are designed to encourage collaboration and teamwork, with open spaces and meeting rooms equipped with state-of-the-art technology.
• Work Tools: Criteo provides employees with the necessary tools and equipment to perform their jobs effectively, including multiple monitors and testing devices for security professionals.
• Team Interaction: Criteo's culture encourages regular team interactions, knowledge sharing, and continuous learning, with opportunities for mentoring and professional development.

Work Schedule: Full-time (40 hours/week) with flexible hours and the option to work remotely. Maintenance windows and project deadlines may require occasional evening or weekend work.

📝 Enhancement Note: Criteo's work environment is designed to support collaboration, creativity, and well-being, with a focus on providing employees with the tools and resources they need to succeed in their roles.

📄 Application & Technical Interview Process

Interview Process:

1. Technical Phone Screen: A 30-minute phone or video call to assess your technical skills, experience, and cultural fit. Be prepared to discuss your experience with threat intelligence, incident response, and vulnerability management, as well as your familiarity with SIEM systems and automation tools.
2. On-site Interview: A half-day on-site interview at Criteo's headquarters in Paris, consisting of:
   • Technical Deep Dive: A 60-minute technical discussion focused on your experience and expertise in security operations, incident response, and threat intelligence. Be prepared to discuss specific examples of your work and the outcomes you achieved.
   • Behavioral Questions: A 30-minute session focused on your problem-solving skills, adaptability, and ability to work effectively in a team. Be prepared to provide examples of your past experiences and how you overcame challenges.
   • Meeting with the Team: A 30-minute meeting with the security team to discuss the role, team dynamics, and your fit within the organization.
3. Final Decision: A final decision will be made based on the feedback from the interview process, and you will be notified of the outcome within a week.

Portfolio Review Tips:

• Highlight your experience with threat intelligence, incident response, and vulnerability management through case studies and examples.
• Demonstrate your ability to automate security processes and enhance security operations through your portfolio of automation tools and scripts.
• Showcase your understanding of security best practices and industry standards by including relevant documentation and certifications in your portfolio.

Technical Challenge Preparation:

• Brush up on your knowledge of threat intelligence, incident response, and vulnerability management best practices.
• Familiarize yourself with SIEM systems, particularly ElasticSearch, and be prepared to discuss your experience with these tools.
• Review Criteo's company culture and values to ensure a strong fit and demonstrate your alignment with the organization's mission and goals.

ATS Keywords: (Organized by category)

• Security Operations: Threat Intelligence, Incident Response, Vulnerability Management, Security Operations Center (SOC), Security Information and Event Management (SIEM), ElasticSearch, Automation, Scripting, Python, Go, Bash, Security Best Practices, Industry Standards
• Collaboration & Communication: Teamwork, Cross-functional Collaboration, Problem-solving, Adaptability, Cultural Fit, Leadership, Mentoring, Knowledge Sharing
• Company-Specific: Criteo, Commerce Media Platform, Advertising Technology, Data-driven Decision Making, Innovation, Exploration, Continuous Learning

📝 Enhancement Note: Criteo's interview process is designed to assess your technical skills, experience, and cultural fit, with a focus on your ability to lead security operations, drive proactive security projects, and collaborate effectively with cross-functional teams.

🛠 Technology Stack & Web Infrastructure

SIEM Systems:

• ElasticSearch: Utilized for monitoring and analysis of security events and incidents.

Automation & Scripting Tools:

• Python, Go, Bash: Used for building automation tools and scripts to enhance security operations.

Collaboration & Communication Tools:

• Slack, Microsoft Teams, or other collaboration platforms: Used for team communication, knowledge sharing, and project management.

📝 Enhancement Note: While Criteo uses specific tools for security operations, automation, and collaboration, the ideal candidate will have experience with a variety of tools and be able to adapt to new technologies as needed.

👥 Team Culture & Values

Security Operations Values:

• Proactive: Anticipate and mitigate security threats before they impact Criteo's infrastructure and data.
• Collaborative: Work closely with cross-functional teams to ensure security is integrated into every aspect of Criteo's operations.
• Adaptable: Stay up-to-date with emerging threats, technologies, and best practices to continuously improve Criteo's security posture.
• Data-driven: Use data and analytics to inform security decisions, measure performance, and optimize security operations.

Collaboration Style:

• Cross-functional: Work closely with teams managing infrastructure and platforms, as well as the compliance team, to drive security best practices across the organization.
• Knowledge sharing: Regularly share security insights, best practices, and lessons learned with the team and wider organization.
• Mentoring: Provide guidance and support to junior team members to help them develop their skills and advance their careers.

📝 Enhancement Note: Criteo's security operations team values proactivity, collaboration, adaptability, and data-driven decision making, with a strong focus on working closely with cross-functional teams to drive security best practices across the organization.

⚡ Challenges & Growth Opportunities

Technical Challenges:

• Threat Landscape Evolution: Stay up-to-date with the ever-evolving threat landscape and adapt security strategies to address new and emerging threats.
• Scalability: Ensure that security measures and tools can scale to support Criteo's growing infrastructure and user base.
• Compliance: Maintain compliance with relevant regulations, standards, and industry best practices to protect Criteo's data and reputation.
• Cross-functional Collaboration: Work effectively with teams managing infrastructure and platforms, as well as the compliance team, to drive security best practices across the organization.

Learning & Development Opportunities:

• Certifications: Pursue relevant security certifications, such as Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), or Certified Ethical Hacker (CEH), to enhance your knowledge and skills.
• Conferences & Events: Attend industry conferences, webinars, and workshops to stay up-to-date with emerging trends, best practices, and networking opportunities.
• Mentoring: Seek mentorship from experienced security professionals within and outside of Criteo to gain insights and guidance on career development and technical growth.

📝 Enhancement Note: Criteo's security operations team faces technical challenges related to the evolving threat landscape, scalability, compliance, and cross-functional collaboration. By embracing these challenges and pursuing learning and development opportunities, team members can drive continuous improvement and growth within their careers.

💡 Interview Preparation

Technical Questions:

• Threat Intelligence: Describe your experience with threat intelligence activities, such as threat hunting, threat modeling, and threat intelligence feeds. How have you used this information to inform security strategies and incident response?
• Incident Response: Walk through a specific incident you've responded to, detailing the steps you took to identify, contain, and remediate the threat. How did you ensure the incident did not recur, and what lessons did you learn from the experience?
• Vulnerability Management: Explain your approach to vulnerability management, including how you identify, prioritize, and remediate vulnerabilities in Criteo's infrastructure. How do you ensure that vulnerabilities are addressed in a timely manner without disrupting business operations?

Company & Culture Questions:

• Criteo's Mission: How do you align with Criteo's mission to power the world's marketers with trusted and impactful advertising, encouraging discovery, innovation, and choice in an open internet?
• Security Culture: Describe your experience with security culture in previous roles. How have you contributed to fostering a strong security culture, and what specific initiatives have you led to drive security awareness and best practices?
• Cross-functional Collaboration: How have you worked effectively with cross-functional teams in previous roles? What specific examples can you provide of driving security best practices across different departments and teams?

Portfolio Presentation Strategy:

• Case Studies: Present case studies demonstrating your experience with threat intelligence, incident response, and vulnerability management. Highlight the outcomes you achieved and the impact you made on the organizations you've worked with.
• Automation Tools & Scripts: Showcase your ability to automate security processes and enhance security operations by presenting your portfolio of automation tools and scripts. Explain how these tools have improved security outcomes and reduced manual effort.
• Security Best Practices: Demonstrate your understanding of security best practices and industry standards by including relevant documentation and certifications in your portfolio. Explain how you've implemented these best practices in previous roles and how you plan to apply them at Criteo.

📝 Enhancement Note: Criteo's interview process focuses on assessing your technical skills, experience, and cultural fit, with a strong emphasis on your ability to lead security operations, drive proactive security projects, and collaborate effectively with cross-functional teams.

📌 Application Steps

To apply for this Senior Site Reliability Engineer - Blue Team position at Criteo:

1. Submit Your Application: Click on the application link provided in the job listing and complete the online application form.
2. Tailor Your Resume: Highlight your experience with threat intelligence, incident response, and vulnerability management, as well as your familiarity with SIEM systems and automation tools. Include relevant keywords and phrases to optimize your resume for Criteo's Applicant Tracking System (ATS).
3. Prepare for Technical Phone Screen: Brush up on your knowledge of threat intelligence, incident response, and vulnerability management best practices. Review Criteo's company culture and values to ensure a strong fit and demonstrate your alignment with the organization's mission and goals.
4. Research Criteo: Familiarize yourself with Criteo's business, industry, and competition. Understand the company's unique value proposition and how your skills and experience can contribute to its success.
5. Prepare for On-site Interview: Practice common interview questions and brush up on your technical skills. Review your portfolio and be prepared to discuss your experience with threat intelligence, incident response, and vulnerability management, as well as your ability to automate security processes and enhance security operations.

⚠️ Important Notice: This enhanced job description includes AI-generated insights and web development/server administration industry-standard assumptions. All details should be verified directly with the hiring organization before making application decisions.

---

Content Guidelines (IMPORTANT: Do not include this in the output)

Web Technology-Specific Focus:

• Tailor every section specifically to security operations, incident response, and threat intelligence roles.
• Include security best practices, incident response methodologies, and threat intelligence techniques.
• Emphasize experience with SIEM systems, particularly ElasticSearch, and automation tools for security operations.
• Address cross-functional collaboration with infrastructure and platform teams, as well as the compliance team.

Quality Standards:

• Ensure no content overlap between sections - each section must contain unique information.
• Only include Enhancement Notes when making significant inferences about security operations, incident response, or threat intelligence, with specific reasoning based on role level and web technology industry practices.
• Be comprehensive but concise, prioritizing actionable information over descriptive text.
• Strategically distribute security operations, incident response, and threat intelligence-related keywords throughout all sections naturally.
• Provide realistic salary ranges based on location, experience level, and security operations specialization.

Industry Expertise:

• Include specific security operations, incident response, and threat intelligence tools, methodologies, and best practices relevant to the role.
• Address security operations career progression paths and technical leadership opportunities in security teams.
• Provide tactical advice for portfolio development, live demonstrations, and project case studies focused on security operations, incident response, and threat intelligence.
• Include security operations-specific interview preparation and coding challenge guidance.
• Emphasize security operations team culture, cross-functional collaboration, and user impact measurement.

Professional Standards:

• Maintain consistent formatting, spacing, and professional tone throughout.
• Use security operations, incident response, and threat intelligence industry terminology appropriately and accurately.
• Include comprehensive benefits and growth opportunities relevant to security operations professionals.
• Provide actionable insights that give security operations candidates a competitive advantage.
• Focus on security operations team culture, cross-functional collaboration, and user impact measurement.

Technical Focus & Portfolio Emphasis:

• Emphasize security operations best practices, incident response methodologies, and threat intelligence techniques.
• Include specific portfolio requirements tailored to the security operations, incident response, and threat intelligence discipline and role level.
• Address threat detection, incident response, and remediation strategies, as well as security operations automation and optimization.
• Focus on problem-solving methods, performance optimization, and scalable security architecture.
• Include technical presentation skills and stakeholder communication for security projects.

Avoid:

• Generic business jargon not relevant to security operations, incident response, or threat intelligence roles.
• Placeholder text or incomplete sections.
• Repetitive content across different sections.
• Non-technical terminology unless relevant to the specific security operations role.
• Marketing language unrelated to security operations, incident response, or threat intelligence.

Generate comprehensive, security operations-focused content that serves as a valuable resource for security professionals seeking their next opportunity and preparing for technical interviews in the security operations industry.