Work model: Hybrid (2 days in the office per week)
Job Type: Full Time
Job Location: Málaga or Madrid
As a Senior Security Engineer, you will be a member of a global team of information security specialists. You must possess strong understanding of security engineering technology, principles and practices related to an online business, apply them pragmatically to strike a balance between protecting our business and customers, while allowing the organization to get on with doing what it does best.
The Senior Security Engineer has full responsibility for building, maintenance and day-to-day operations of the security systems that protect the organization’s data and information technology assets. This position also assumes leading other teammates and being responsible for a project delivery.
Responsibilities
- Building, deployment and maintenance of security tools ensuring that security technologies and functions are properly engineered and supported. Work on security roadmap to improve the security posture of the organisation
- Act as a tech leader for less matured teammates. helping them to overcome roadblocks and troubleshoot issues
- Lead by example, demonstrating a high level of professionalism together with openness and willingness to collaborate
- Help other teams to do operation and ongoing management of security systems that safeguard data and information assets to ensure that solutions and security controls are deployed to mitigate internal and external security threats
- Act as the Senior Security SME within multi-disciplinary project teams, identifying security requirements, performing low-level design review, shaping solutions and delivering it as end-to-end project
- Provide Security Engineering response to Production Incident and Problem investigations, including support the security on-call function as required
- Drive continual improvement across the Security Engineering work activities and wider organisational contribution through process review and adoption of automation capabilities to deliver standardisation and efficiencies within the team
- Maintain detailed sets of documentation for security systems
- Engage the team with latest security trends and techniques, foster knowledge sharing
Requirements
- A minimum of 5 years’ technical experience within security engineering, with a focus on solution implementation and management
- Extensive experience and in-depth understanding of the design, deployment, and support of security technologies, e.g., IDS, Vulnerability Management, Authentication and identity management, SIEM, WAF, SEG, MDM
- Hands-on coding skills at the level required for automation of deployment/configuration routine
- Practical knowledge about hybrid / on-prem environment including appropriate application of security controls based on risks, management of security appliances and infrastructure, change management and support cycles.
- Familiarity with industry security configuration standards, such as NIST and CIS
- Optional / desired: Experience with application security, Data Loss Prevention platforms and Security Orchestration Automation and Response implementations.
Required personal skills
- A clear communicator and dedicated professional who brings thoughtfulness and expertise to the Engineering Security team.
- Reliable and supportive team member, who enjoys team play
- Ability to mentor junior team members, remove technical roadblocks, and lead security-focused projects while working closely with cross-functional teams
- Passion for learning and improving, staying current on emerging threats and technologies, apply those to evolve the infrastructure security strategy
- Strong self-organizing skills to manage multiple concurrent tasks or activities, prioritising them in a timely manner
- Ability to maintain strict confidentiality of the company’s internal and personnel data.
- Very good communication/technical writing skills in English