Cibersecurity Engineer

The Role
We are looking for a skilled and experienced Cybersecurity Engineer to strengthen our Information Security and Infrastructure teams.

This professional will play a key role in ensuring the security and compliance of Openchip's IT systems, development pipelines, and production environments. You will work closely with DevOps, Infrastructure, and Compliance teams to implement best practices, mitigate risks, and ensure the organization's cybersecurity posture aligns with international standards. The ideal candidate combines strong technical expertise with a deep understanding of security governance, operations, and architecture.

Key Responsibilities
Governance and Compliance:

• Conduct risk analysis and advisory activities across the company and with third parties.
• Ensure compliance alignment with security standards such as ISO 27001, NIS2, ENS, and other relevant frameworks.
• Participate in audit preparation, documentation, and remediation planning.

Pipeline Security

• Collaborate with the DevOps team to ensure security across the software development lifecycle (SDLC) and CI/CD pipelines.
• Integrate security checks, secret management, and vulnerability controls in development workflows.
• Security Operations o Lead incident investigation and handling, including analysis through SIEM and EDR tools.
• Operate and maintain core security tools such as firewalls, endpoint protection (EDR), email protection, IDS, and IPS systems.
• Manage patching, monitoring, and response processes for security-related incidents.

Security Architecture

• Design, implement, and maintain secure systems and network architectures.
• Review and validate configurations to ensure alignment with security policies and best practices.

Vendor and Project Management

• Manage and coordinate third-party security contracts and external service providers.
• Support project planning, procurement, and vendor evaluations with a security focus.

Develop internal tools and automation scripts in Python, PowerShell, or Bash to support monitoring, compliance, and response activities.
Qualifications

• 5+ years of experience in cybersecurity consulting or working within an internal security team.
• Professional certifications such as CISA, CISM, CEH, CISSP, CompTIA Security+, OSCP, or equivalent.
• Strong understanding of attack vectors, mitigation strategies, and modern defense techniques.
• Proven experience in cloud security (Azure, AWS, or GCP).
• Experience with vulnerability management, policy implementation, and incident response.
• Solid knowledge of network security, identity management, and encryption principles.
• Advanced level of English, as it is the daily working language.

Soft Skills

• Analytical mindset with attention to detail and accuracy.
• Strong communication skills and ability to convey complex security concepts clearly.
• Capable of balancing governance and technical execution.
• Proactive and adaptable, able to manage multiple projects simultaneously.
• Collaborative team player with a problem-solving approach.
• Passionate about cybersecurity and continuous improvement.

We are looking for outstanding people willing to join our mission to change this industry and help to build a better world.
If you feel identified with Openchip, please contact us. We can offer a competitive compensation package in a flexible work schema that will help you to keep a balance between your personal and professional life. At Openchip & Software Technologies S.L., we believe a diverse and inclusive team is the key to groundbreaking ideas.
We foster a work environment where everyone feels valued, respected, and empowered to reach their full potential – regardless of race, gender, ethnicity, sexual orientation, or gender identity.