Cybersecurity Analyst Senior
4 days ago
Madrid
📝 Some details about your department We are looking for an experienced and proactive Senior Cybersecurity Analyst to join our Information Security team. In this role, you will play a key part in strengthening the organization's security posture by leading security operations, driving incident response activities, advancing security awareness initiatives, and contributing to the development of security governance and risk management programs. You will work closely with the CISO, IT, Engineering, DevOps, and business stakeholders to identify and mitigate cyber risks, improve security processes, and ensure compliance with applicable regulatory and industry standards. As a senior member of the team, you will provide technical leadership, mentor less experienced colleagues, and help shape the evolution of our cybersecurity capabilities in a rapidly changing threat landscape. 🎯 What we'd like you to do • Lead the design, evolution, and delivery of the company's security awareness strategy, developing role-based training programs on phishing, social engineering, data protection, and emerging threats for both technical and non-technical stakeholders., • Own the planning, execution, and continuous improvement of phishing simulation programs, defining success metrics, analysing trends, and presenting actionable insights and recommendations to senior leadership., • Act as a senior member of the SOC, leading complex incident investigations across SIEM, EDR, cloud, and endpoint environments, coordinating response activities and driving incident resolution efforts., • Lead post-incident reviews, root cause analyses, and lessons-learned initiatives, ensuring findings are translated into improvements in detection capabilities, response procedures, and security controls., • Partner with the CISO, GRC, Legal, and business stakeholders to define and implement security policies, standards, and governance frameworks aligned with ISO 27001, NIST CSF, NIS2, GDPR, the EU AI Act, and other applicable regulations., • Drive risk assessment activities across the organisation, identifying security, operational, and compliance risks, prioritising remediation plans, and reporting risk posture to leadership teams., • Lead security reviews of AI solutions adopted or developed by the company, establishing governance controls, security requirements, and risk mitigation strategies related to data privacy, model integrity, prompt injection, and unauthorized access., • Monitor and analyse threat intelligence, emerging attack techniques, and vulnerability trends, proactively translating findings into strategic security improvements and defensive measures., • Define and maintain security architecture documentation, configuration baselines, hardening standards, and operational procedures across the organisation's security technologies., • Own access governance processes, conducting privileged access reviews, enforcing least-privilege principles, and providing guidance on exception management and identity security best practices., • Act as a security advisor to IT, DevOps, Engineering, and business teams, embedding security-by-design and shift-left principles throughout projects, products, and operational processes., • Mentor junior team members, provide technical guidance, and contribute to the development of security capabilities, processes, and best practices across the organisation. 🔊 What we'd like you to bring • Bachelor's degree in Computer Engineering, Computer Science, Information Security, Information Systems, or a related field — or equivalent practical experience., • 5+ years of experience in cybersecurity, information security, or security operations roles, with demonstrated experience leading security initiatives and managing complex incidents., • Strong knowledge of enterprise security operations, including SIEM, EDR, threat detection, incident response, threat intelligence, vulnerability management, and security monitoring., • Deep understanding of networking, cloud security, operating systems (Windows, Linux, macOS), identity and access management, and modern attack techniques., • Hands-on experience implementing and operating security frameworks and standards such as ISO 27001, NIST CSF, CIS Controls, NIS2, and GDPR compliance programs., • Experience conducting security risk assessments, developing remediation strategies, and influencing stakeholders across technical and business functions., • Strong knowledge of AI security, data protection, and emerging regulatory requirements, including the EU AI Act and secure AI adoption practices., • Proven ability to analyse complex security challenges, make risk-based decisions, and balance security requirements with business objectives., • Excellent communication and stakeholder management skills, with experience presenting security risks, incidents, and strategic recommendations to senior leadership and executive audiences., • Demonstrated ability to lead cross-functional initiatives, mentor team members, and drive continuous improvement in security processes and capabilities., • Relevant certifications such as CISSP, CISM, GIAC, ISO 27001 Lead Implementer/Auditor, or equivalent are highly desirable. ✔️Perks of joining us We give you complete stability with an indefinite job contract. We offer a fixed salary according to your worth and experience, plus a performance based bonus. Get the most out of your salary with our Flexible Payment Plan (Restaurant Ticket, Transportation Ticket, Day Care Ticket, and Medical Insurance). Do you know someone that fits in Making Science? Refer him or her, and you can get a bonus if they’re hired! Feedback is part of our day to day lives. We recognize a job well done through a continuous feedback model. The opportunity to meet our international team with our Ambassadors Program. We care about a healthy work-life balance. You can count on having flexible working hours and one day a week where you can work from home. You will never stop learning with us: subsidized training, free language classes, learning capsules, an e-learning platform, and many more. Pack your bags! You’ll have 23 vacation days, plus 24th, 31st of December and San Publicito are off, and we have afternoons off on the eve of national holidays. Work comfortably and follow your own style, because we don’t have a dress code. We know how to have a good time! Never go hungry with our free daily fruit and our vending machine card! Take a break on our terrace, play foosball, darts, or PlayStation Be a part of a young, adventurous, and professional team, with people you’ll grow fond of!
Waiters
Sales & Marketing
Chef & Cook
Retail
Salon & Beauty
Construction & Trades
Fast Food
Accounting & Finance
Animal Care
Art, Media, Design
Bar Staff
Barista
Child Care
Cleaning
Customer Service
Driver & Delivery
Education
Engineering
Entertainment
Events & Promotion
Fashion
Healthcare
Host & Hostess
Information Technology
Kitchen Porter
Legal
Management
Manufacturing
Office & Admin
Online Jobs
Science
Security
Sports & Wellness
Warehouse
Writing & Editing
Other