Security Engineer
hace 3 semanas
**Our mission**:
We are a cutting-edge e-commerce company. Our creative, smart and dedicated teams pool their knowledge and experience to find the best solutions to meet project needs, while maintaining sustainable and long-lasting results. How do we achieve this? By making sure that our teams thrive and develop professionally. Strong advocates of hiring top talent and letting them do what they do best, we strive to create a workplace that allows for an open, collaborative and respectful culture.
**The Role**:
**What you will be doing...**:
This is a highly visible role You will protect our infrastructure by analyzing, remediating, and monitoring breaches, issues, incidents, and vulnerabilities. The right person must have excellent engagement and communication skills and a solid customer-focused and team-oriented approach that balances security needs and user experience to provide best-in-class security for the organization.
**Must also be bilingual: English/Spanish.**
**Main responsibilities for this Role**
Vulnerability Management & SecOps Engineer will be responsible for following (but not limited to) responsibilities in day-to-day work:
- Keep and improve the Vulnerability Management Program of the company.
- A focal point of contact for Vulnerability scanning schedule, configuration in a tool, and execution as per the schedule. Any failure of scans is to be investigated and scheduled to be re-run.
- Administration of **Tenable Vulnerability Management** (Nessus) and using its various features to enable and support the Vulnerability Management Program.
- Usage of **ManageEngine EndPoint Central**, **New Relic**, and any other tools available in the company in order to take advantage of their features to improve the Vulnerability Management Program and Metrics.
- Conducts periodical discovery of IT Assets, ensures that identified assets are appropriately tagged, and includes the new assets in the Vulnerability Management tool.
- Assess the identified vulnerabilities and study & understand the risk profile and impact.
- Identify any false positives reported and the technical limitations of the vulnerability in the environment, and be able to declare and manage it within the Tenable tool.
- Keep and improve existing scripts to process vulnerability results (i.e. to automatically import them into Jira while matching existing data in **Axonius**).
- Perform Penetration Tests following OWASP and using tools such as **Burp Suite** or **ZAP**.
- Develop and manage a bug bounty program (i.e. write the security researcher conditions, review received vulnerabilities, etc.).
- Manage vulnerabilities reported by corporate antivirus (i.e. **Crowdstrike**).
- Collaborate with Infrastructure teams (Windows, Linux, Networks, etc.) for the remediation/mitigation of the identified vulnerabilities.
- Maintain the Vulnerability Dashboard for the scope and submits reports to both Technical teams and Management.
- Keep and improve the existing server hardening guides, to avoid recurring vulnerabilities.
- Organize work to achieve compliance with established KPIs for Vulnerability Management and proactively work towards achieving the same. Maintain periodical reporting on the progress.
- Escalate -discuss and consult
- as required to next levels and Management in a timely manner.
- Participate in meetings with various stakeholders as per the schedules. Liaise with different teams in different geographical zones.
- Propose, plan, and execute vulnerability service/security service improvement initiatives.
- Adhere to different policies set out by the organization.
- Follow and improve existing **procedures**.
- Keep your work organized based on **tickets** (**Jira**).
- Prepare and provide different reports (weekly/monthly/ad-hoc) to the Top Management as necessary.
- Maintain appropriate knowledge required for successful and efficient delivery of the responsibilities.
- Keeping abreast of new threats and vulnerabilities and providing analysis as per applicability.
- Help the organization understand advanced cyber threats.
- Possibility to perform **on-call** after working hours and weekends.
**Knowledge and skills you need to have**:
- Five years of a university degree or four-year college diploma is required, preferably in computer science, telecommunications, or other related academic fields. Or equivalent work experience.
- Must have working experience administering and operating Tenable Vulnerability Management for a large enterprise.
- Working and hands-on experience in running a Vulnerability Management process.
- Good understanding of Reporting needs at various levels of organization and ability to design, create, and present the same.
**Competencies**:
- ** Reading comprehension**: You must be able to read and understand the existing procedures, and the tasks assigned on tickets. This is crucial for you to work under mínimal supervision and excel. If you are a technical guru but don't understand the assigned
-
Fullstack Security Engineer
hace 3 semanas
Madrid, España Marks Sattin A tiempo completoAre you an experienced Full-stack Security Engineer looking for your next adventure? My client, a leading financial services company is looking to add an experienced Full stack Security Engineer to their growing teams in either London, Lisbon or Madrid! As an experienced Full-stack Security Engineer, you must have at least 4-5 years of experience, working...
-
Security Engineer Remoto
hace 2 semanas
Madrid, España Digital Talent Agency A tiempo completoDesde DTA estamos seleccionando un perfil de SECURITY ENGINEER para I+D con al menos 2 años de experiencia.¿QUÉ NECESITAMOS?- Licenciatura/grado en Ingeniería de Telecomunicación, Informática o titulación técnica afín.- Al menos 2 años acreditables de experiencia como Security Engineer. El nivel de experiencia determinará las funciones y...
-
Senior Platform Security Engineer
hace 3 semanas
Madrid, España Celonis A tiempo completoThe Team: Our Global information security organization is responsible for security and trust. We think about security-offensively and defensively. We continuously monitor our global security posture and are always adapting to the ever-changing threat landscape. The security engineering team is always looking for talented subject matter experts in...
-
Security Engineer Remoto
hace 2 semanas
Madrid, Madrid, España Digital Talent Agency A tiempo completoDesde DTA estamos seleccionando un perfil de SECURITY ENGINEER para I+D con al menos 2 años de experiencia.¿QUÉ NECESITAMOS? Licenciatura/grado en Ingeniería de Telecomunicación, Informática o titulación técnica afín. Al menos 2 años acreditables de experiencia como Security Engineer. El nivel de experiencia determinará las funciones y condiciones...
-
Network, Communications, And Security Engineer
hace 4 semanas
Madrid, España Antal International Network A tiempo completoNetwork, Communications, and Security Engineer Our International Client is a dynamic organization dedicated to ensuring the seamless operation of its network and communication infrastructure, while upholding high security standards. Currently, we are in search of an experienced Network, Communications, and Security Engineer. In this role, you will play a...
-
Security Engineer
hace 4 semanas
Madrid, España Ebury A tiempo completoEbury is a hyper-growth FinTech firm, named in 2021 as one of the top FinTechs to work for by Glassdoor and AltFi. We offer a range of products including FX risk management, trade finance, currency accounts, international payments and API integration. **Full-stack Security Engineer** **4 days in the office - **Ebury Madrid** **About the role** This...
-
Mid/Sr Security Engineer
hace 2 semanas
Madrid, España Incode Technologies A tiempo completoThe Opportunity We seek a trustworthy and proactive Mid/SR Security Engineer as a technical thought leader and driver of holistic security operations across Incode. As an early security hire at Incode, you will work across the security operations lifecycle for detection engineering and incident response, influence the security operations program development,...
-
Senior Security Automation Engineer
hace 2 semanas
Madrid, España Celonis A tiempo completoWe're Celonis, the global leader in Process Mining technology and one of the world's fastest-growing SaaS firms. We believe there is a massive opportunity to unlock productivity by placing data and intelligence at the core of business processes - and for that, we need you to join us. The Team: Our Global information security organization is responsible...
-
Security Engineer
hace 6 días
Madrid, España Intelygenz A tiempo completoAt Intelygenz, we envision a future where processes accelerate performance. For the companies we work with, this means finding ways to optimize their data using cutting-edge technologies like AI-enabled automation. This mindset is a huge part of our culture. We thrive on pooling our skills, collaborating on projects, helping one another learn and creating...
-
Security Engineer. Proyectos I+d. remoto
hace 3 semanas
Madrid, Madrid, España Digital Talent Agency A tiempo completoDesde DTA estamos seleccionando un perfil de SECURITY ENGINEER para I+D con al menos 2 años de experiencia. ¿QUÉ NECESITAMOS? Licenciatura/grado en Ingeniería de Telecomunicación, Informática o titulación técnica afín. Al menos 2 años acreditables de experiencia como Security Engineer. El nivel de experiencia determinará las funciones y...
-
Senior Security Engineer
hace 2 semanas
Madrid, España Mattermost Inc A tiempo completoMattermost provides secure, workflow-centric collaboration for technical and operational teams that need to meet nation-state-level security and trust requirements. We serve technology, public sector, national defense, and financial services industries with customers ranging from tech giants to the world's largest banks, to the U.S. Department of Defense and...
-
Senior Security Engineer
hace 4 semanas
Madrid, España Deliverect A tiempo completo**Who are we** Deliverect is in hyper-growth! As a global SaaS Unicorn, our mission is to be the backbone of on-demand food, with over 300 million orders completed globally. We simplify online order management to help restaurants, cloud kitchens and food chains around the world become faster, smarter, and more connected so that they can serve even more...
-
Senior Cloud Engineer.
hace 1 mes
Madrid, España Kudelski Security A tiempo completoStimulating. Motivating. Challenging. Leveraging its long-standing expertise in securing digital content as well as fighting piracy, Kudelski Security, a division of the Kudelski Group, is a provider of cybersecurity solutions and services focused on protecting data, processes and systems for companies and organizations around the world, safeguarding...
-
Security Engineer
hace 1 mes
Madrid, Madrid, España Michael Page A tiempo completoPerfil buscado (Hombre/Mujer) Desarrollar e implementar estrategias de I+D+i relacionadas con la ciberseguridad. Realizar evaluaciones de riesgo y auditorías de seguridad. Supervisar y coordinar actividades de seguridad. Colaborar con el equipo de tecnología para garantizar la seguridad en los proyectos de I+D+i. Ofrecer formación en seguridad a los...
-
Cyber Security Engineer
hace 4 semanas
Madrid, España SGS A tiempo completoJob Description We are seeking a highly skilled and detail-oriented professional to join our team as a Cyber Security Consultant. As a Cyber Security Consultant, you will be responsible for evaluating and assessing the security functionality of information technology products based on the Common Criteria standard. Your role will involve conducting...
-
Senior Security Engineer
hace 4 semanas
Madrid, España Mattermost A tiempo completoMattermost provides secure, workflow-centric collaboration for technical and operational teams that need to meet nation-state-level security and trust requirements. We serve technology, public sector, national defense, and financial services industries with customers ranging from tech giants to the world’s largest banks, to the Department of Defense and...
-
Senior Security Application Engineer
hace 4 semanas
Madrid, España Antal International Network A tiempo completo???? ¡Buscamos un Senior Security Application Engineer ! ????????? ???? Trabaja con el equipo de ingeniería diseñando y revisando soluciones técnicas para abordar debilidades de seguridad. ???? Adéntrate en diversos temas de seguridad, como autenticación, cifrado e integraciones con socios. ?????? Revisa y comprende problemas en el código a través...
-
Senior Cloud Devops Engineer.
hace 2 días
Madrid, España Kudelski Security A tiempo completoStimulating. Motivating. Challenging. Leveraging its long-standing expertise in securing digital content as well as fighting piracy, Kudelski Security, a division of the Kudelski Group, is a provider of cybersecurity solutions and services focused on protecting data, processes and systems for companies and organizations around the world, safeguarding...
-
Security Engineer
hace 4 semanas
Madrid, España Axpo A tiempo completoIT / Technology - Madrid - Hybrid Remote **Workload: 100% | Madrid** Join Axpo as a Security Engineer, and be responsible for maintaining and operating firewalls and other network security infrastructure for our company, both in the cloud and on-premises. Together with the Senior Security Engineers and other departments (Network Team, SRE Engineers, CISO...
-
Microsoft 365 Security Engineer
hace 7 días
Madrid, España Swiss RE A tiempo completo**About the Team** We in Digital Workplace set out to make it easy for 18,000 employees to use their digital workplace to seamlessly connect with people, ideas, and expertise within and beyond Swiss Re. Our key to success is ensuring we understand the business needs of our internal clients, so that we can identify the relevant technologies that will benefit...
