Cybersecurity Expert

At Leadtech, we've been redefining digital businesses since 2009, creating innovative online solutions that reach millions of users every month. With a diverse team of over 700 members from 23+ nationalities, we're united by a passion for creativity and collaboration.

We specialize in delivering user-centric experiences across web and mobile platforms, where people can connect with our products like never before.

We're proud of our global reach and committed to fostering an inclusive workplace where every individual contributes to our shared vision of bringing cutting-edge projects to life. Learn more about our journey and mission on our page

The Security team is excited to welcome a motivated Cybersecurity Expert to help us protect an organization's digital assets, systems, and data from security threats.

As Cybersecurity Expert, you'll play a vital role in operating and optimizing our Security Operations Center. You'll have the opportunity to make a meaningful impact on both our products and processes.

If you're passionate about solving complex problems, collaborating across departments, and driving results, this role is perfect for you

As a Cybersecurity Expert (SOC & Cloud) at Leadtech, you will:

Operate & optimize (and potentially Lead) a Security Operations Center (SOC), which includes tasks such as:

• • Advanced Incident Investigation and Analysis
• • Handling Complex Threats: Investigating high-priority alerts escalated from Tier 1/2, such as potential APTs (Advanced Persistent Threats) or ransomware.
  • Deep-Dive Analysis: Performing forensics on compromised systems, analyzing malware, and reconstructing attack chains using packet captures and log data.
  • Cross-Source Correlation: Stitching together fragmented data from SIEM, EDR (Endpoint Detection and Response), and NDR (Network Detection and Response) tools to build a comprehensive picture of the attack.
• Proactive Threat Hunting and Detection Engineering
• • Threat Hunting: Proactively searching network and endpoint data for undetected, hidden threats rather than waiting for alerts.
  • Rule Creation & Tuning: Developing custom detection logic and SIEM correlation rules to identify new malicious behavior.
  • Reducing False Positives: Refining alert systems to minimize noise, ensuring the team focuses on genuine security incidents.
• Incident Response and Containment
• • Orchestrating Response: Acting as Security Incident Response Team (CSIRT) to isolate compromised assets and mitigate damage.
  • Developing Playbooks: Creating and updating security playbooks and automated workflows within SOAR platforms to standardize incident response.
  • Forensic Evidence Preservation: Ensuring digital evidence is collected and preserved according to legal and chain-of-custody standards.
• Mentorship and Leadership
• • Guidance for other members of the team: In the future, mentoring and training Tier 1 and Tier 2 analysts on complex investigations and new technologies.
  • Quality Assurance: Performing ticket reviews and providing feedback to ensure high-quality documentation and adherence to Service Level Agreements (SLAs).
• Strategy, Compliance, and Reporting
• • Vulnerability Assessment: Analyzing vulnerability scan results to identify critical weaknesses and recommending remediation plans.
  • Reporting and Compliance: Generating reports on incidents, trends, and SOC performance for management, and auditing systems for compliance (e.g., ISO 27K1, PCI DSS, HIPAA).
  • Threat Intelligence Integration: Incorporating external threat intel feeds to anticipate emerging threats and update defenses.

Requirements

We're looking for a highly technical, hands-on cybersecurity professional who thrives in a dynamic, cloud-first environment. Ideally, you bring:

Must-have experience:

• • Bachelor/ Master's degree in Cybersecurity, Information Security, Computer Science, or a similar discipline
• Knowledge of Security frameworks such as ISO 27001, NIST, PCI-DSS, OWASP, GDPR
• Knowledge of technical concepts such as cloud computing, code review, application security, cryptography, forensics, vulnerability detection (Azure & AWS are a must)
• Deep Knowledge of cybersecurity/technical concepts such as:
• • GNU/Linux systems
  • Microsoft Sentinel and Defender, as well as experience with writing KQL queries
  • Microsoft Azure (Network Security Groups, Recovery Services Vaults, Playbooks and Workbooks)
  • TCP/IP, DNS, and firewalls
  • Python, Bash, and SQL, Java, PHP
  • Datadog knowledge is a plus
• Familiarity with attack and exploitation techniques involving operating systems, applications, and devices (CISSP, CompTIA, CEH)
• Understanding of security best practices for data and systems protection
• Familiarity with vulnerability scanning tools such as SonarQube, AWS Inspector, Qualys, Nessus, others is a plus
• Ability to evaluate, track, and manage information security threats and vulnerabilities based on available information.
• Understanding and ability to perform penetration testing on applications and identify attack vectors.

Soft skills that matter:

• Strong analytical and problem-solving skills
• Effective communication skills to collaborate with cross-functional teams
• Ability to report and create KPIs for the Security Department
• Familiarity with ticketing tools such as Jira
• Relevant certifications, such as CompTIA Security+, Microsoft Defender Certificate, Microsoft Sentinel Certificate, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), or others is a plus
• Stay current: on the latest cybersecurity trends, threats, and new security technologies.

Benefits

Growth and career development

• At Leadtech, we prioritize your growth. Enjoy a flexible career path with personalized internal training and an annual budget for external learning opportunities.

Work-Life balance

• Benefit from a flexible schedule with flextime (7 - 9:30 a.m. start, 3:30 - 6 p.m. end) and the option of working full remote or from our Barcelona office. Enjoy free Friday afternoons with a 7-hour workday, plus a 35-hour workweek in July and August so you can savor summer

Comprehensive benefits

• Competitive salary, full-time permanent contract, and top-tier private health insurance (including dental and psychological services).
• 25 days of vacation plus your birthday off, with flexible vacation options—no blackout days

Unique Perks

• If you wish to come, in our office in Barcelona you'll find it complete with free coffee, fresh fruit, snacks, a game room, and a rooftop terrace with stunning Mediterranean views.
• Additional benefits include ticket restaurant and nursery vouchers, paid directly from your gross salary.

Join us in an environment where you're free to innovate, learn, and grow alongside passionate professionals. At Leadtech, you'll tackle exciting challenges and be part of a vibrant team dedicated to delivering exceptional user experiences

Equal Employment Opportunity Employer

Leadtech is an Equal Employment Opportunity (EEO) Employer, which means we encourage applications from people with different backgrounds, interests, and personal circumstances. Our team welcomes applicants regardless of their race, gender, age, religion, nationality, sexual orientation, and/or disabilities. All we need is your high energy, skills, and willingness to be part of a great project

Location

You'll have the flexibility to choose whether you'd like to come to the office every day, from time to time, or work fully remote. We want you to find the best combination for you.

If you prefer to be surrounded with amazing people, our exceptional office is in Barcelona's Blue Building, located right on the city's seafront. Besides our stunning views, you'll enjoy our office perks such as free fruit, snacks, and coffee and you'll also be able to take part in our Mario Kart and table tennis competitions.

The personal data you provide will be used to manage your candidacy for the corporate selection processes that fit your profile. If you wish, you can exercise your rights of access, rectification or cancellation by sending a letter to Avenida Litoral, 12-14, 5ta planta, Barcelona 08005, or emailing us at , including a document that validates your identity.