Contentsquare is an all-in-one experience intelligence platform built to be easy for anyone who cares about digital journeys to use. With a flexible, scalable platform, organizations quickly gain a deep understanding of their customers’ entire online experience.
We are a global leader in experience analytics, with a growing presence in 15 offices worldwide. We’re committed to the future—and we’re looking for team members who want to create impact and help us scale even further.
Our goal is to build an inclusive workplace where everyone learns and succeeds. Contentsquare has created a community of people who are bold, thoughtful, and intentional. We invite you to help us make complex things simpler—for our customers, their customers, and for each other.
Important note: Watch out for scammers who may pretend to represent Contentsquare. We will never ask you for money or contact you via unsolicited text messages. Any communication from our in-house Talent Acquisition team will only come from https://contentsquare.com or @contentsquare-ext.com. For more details, please see our careers blog.
Contentsquare is seeking a SOC Analyst to join our Development, Security, and Operations (DevSecOps) team. Reporting to a Senior Cybersecurity Engineer, you will be the first line of defense in our Security Operations Center, helping to detect, analyze, and respond to cyber threats across our global infrastructure.
Contentsquare delivers a leading SaaS offering and is committed to the highest security standards for our customers. We are ISO 27001 and ISO 27701 certified and maintain strong security practices, including a SOC 2 Type 2 report, a private bug bounty program, SIEM, advanced security awareness, and more. Working with other cybersecurity specialists, your mission will be to protect the integrity of our products and keep our users safe by actively monitoring our environments and mitigating active threats.
Key Responsibilities
As an essential member of the DevSecOps team, you will be responsible for day-to-day monitoring and initial response to security alerts, including:
– Alert triage & investigation: Daily monitoring, triage, and investigation of security alerts (including phishing) using our central SIEM (Google SecOps). You’ll qualify events as the first responder, eliminate false positives, look for remediation opportunities, coordinate with internal teams to resolve issues quickly, and escalate confirmed incidents to Senior Analysts (N2/N3).
– Multi-source threat monitoring: Review logs and security events across our modern ecosystem, including:
– Cloud infrastructure logs via AWS CloudTrail and Azure Activity Logs.
– Endpoint and cloud workload telemetry via CrowdStrike (EDR + CNAPP).
– Identity, access, and collaboration events from Okta and Google Workspace.
– Code repository and CI/CD security alerts from GitHub.
– Incident response & on-call rotation: Support investigations of security incidents and participate in an on-call rotation to handle critical incidents outside regular hours, ensuring 24/7 protection of our platform.
– Playbook optimization: Help continuously improve detection by documenting findings, updating SOC playbooks, and recommending rule tuning to reduce alert fatigue.
– Vulnerability & threat tracking: Track vulnerability remediation and stay updated on the latest threat landscape and common attack techniques.
– AI/LLM incident augmentation: Strengthen incident response using AI and LLM-based agent workflows to automate enrichment, speed up investigations, and improve response efficiency.
Desired Skills and Attributes
Education & Experience
– A Bachelor’s or Master’s degree (Bac +5) in IT, Cybersecurity, or equivalent training.
– Initial experience (0 to 3 years), including internships or work-study, in an IT security role—ideally in a SOC.
Technical Competencies
– Cloud & environments: Familiarity with modern cloud applications and environments, with a solid understanding of AWS/Azure architectures and related security risks.
– Security monitoring: Basic ability to query and analyze logs in a SIEM (experience with Google SecOps or similar is a plus).
– Endpoint security: Familiarity with Endpoint Detection and Response (EDR) and cloud workload protection platforms (CrowdStrike preferred).
– Identity & network basics: Strong knowledge of web protocols, common attacks (OWASP), and identity management systems (Okta, SSO, MFA).
– Scripting: Basic scripting skills (Python, Bash) to help automate repetitive triage or data enrichment tasks are highly valued.
Soft Skills
– Analytical and calm under pressure: Strong analytical thinking, attention to detail, and the ability to remain calm and structured during critical incidents.
– Availability: Willingness to participate in an on-call schedule (weekends) to support our 24/7 security operations.
– Team player: Enjoys collaborating with others while also working independently on daily triage tasks.
– Fluency in English (written and spoken); French is a strong advantage.
Location
– Paris office (Headquarters), France.
Why You Should Join Contentsquare
We support career development through mentorship, social activities, philanthropic efforts, and competitive benefits. We continually review our perks to ensure they meet employees’ needs.
Highlights include:
– Virtual onboarding, hackathons, and opportunities to interact with your team and global colleagues each year (on-site and off-site).
– Flexible work options, including hybrid and remote policies.
– Generous paid time off (varies by location).
– Lifestyle allowance.
– A Culture Crew in each country where we operate to organize activities that help employees connect and build relationships outside work.
– Stock options for every full-time employee, so they can share in the company’s success.
– Multiple Employee Resource Groups that create a safe space for people with shared identities, life experiences, or allyship to connect, support one another, and advocate for issues that matter to them.
– Additional benefits tailored to each country.
Contentsquare is an equal opportunity employer. We consider qualified applicants for employment without regard to sex, gender identity or expression, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other legally protected characteristic.
Your personal data is used by Contentsquare only for recruitment purposes. Please read our Job Candidate Privacy Notice to learn more about how we protect your data and your rights. You can also exercise your rights through our Data Subject Rights Portal here. Your personal data will be securely stored in our hosting provider’s data center in Oregon (US West). We use appropriate transfer mechanisms under applicable data protection laws.
Contentsquare may use AI-assisted tools to help review and screen applications. Hiring decisions are made by human reviewers, and your personal data will be processed in line with our Candidate Privacy Policy.
To apply for this job, please visit the application page

