CyberSecurity Team Lead, Infrastructure and Application

Mistral AI
hybrid senior hybrid Paris
Apply →

First indexed 10 Mar 2026

Description

Role summary

Embedded directly within Mistral's Security Engineering ecosystem, you will architect and enforce the security posture of our entire technical stack, from on-premise foundations to cloud-native deployments.

As a CyberSecurity Team Lead, you will oversee the identification, prioritization, and remediation of vulnerabilities across both On-Prem and Cloud infrastructures as well as internal applications.

You will select, deploy, and maintain the tools needed for visibility and protection, including CNAPP, CSPM, SAST/DAST, secret scanning, and SBOM/CVE tracking.

Integrate security controls and automated gates directly into CI/CD pipelines to catch vulnerabilities before deployment (Shift Left).

Partner with engineering teams to interpret findings and 'ease the fix,' providing patches, code snippets, or architectural advice to resolve issues quickly.

Define and maintain rigorous security guidelines and best practices for developers and system administrators.

Design and lead security awareness programs and technical training tailored for developers and admins to reduce human risk.

Track and define key security metrics (MTTR, coverage, vulnerability density) to visualize posture and progress to leadership.

Who you are

  • 6+ years of experience in Information Security, with a specific focus on Application Security, Cloud Security, or DevSecOps.
  • Strong scripting skills (Python, Go, or Bash) to automate security tasks and integrate tools.
  • Deep understanding of CI/CD ecosystems and container orchestration (Kubernetes/Docker).
  • Hands-on experience with modern security tooling (e.g., Wiz, Snyk, SonarQube, Prisma, or similar enterprise tools).
  • Collaborative mindset: you view developers as partners, not adversaries, and focus on enabling them to code securely.
  • Clear communication, autonomous, and capable of translating technical security risks into actionable engineering tasks.

It would be ideal if you also have:

  • Industry certifications such as CISSP, CCSP, OSCP, or cloud-specific security certifications.
  • Strong Infrastructure as Code (IaC) experience with Terraform or Ansible.
  • Experience in offensive security (Penetration Testing) to better understand attacker mindsets.
  • Prior experience securing large-scale AI or Machine Learning infrastructure.
This listing is enriched and indexed by YubHub. To apply, use the employer's original posting: https://jobs.lever.co/mistral/c9b75928-dd48-4432-b6f1-fc0b24e51657