Senior Security Engineer - Full remote in Spain
hace 2 días
Valencia
ph3Senior Security Engineer – Full remote in Spain /h3 pAbout us /p pAt Auctane, we are united by a passion to help businesses deliver — whatever their size, wherever they are, and however they operate. We make it possible for businesses to meet the ever-changing requirements of their industry and customer expectations. Auctane products enable hundreds of thousands of businesses to annually mail and ship billions of items — over $200 billion worth — to recipients around the globe. /p pThe Auctane family of mailing and shipping software products includes ShipStation, Stamps.com, ShipStation API, Metapack, GlobalPost, and Packlink. Our partners include Amazon, UPS, USPS, eBay, BigCommerce, Shopify, WooCommerce, and Walmart. /p pOur values /p pWin as One. Delight Customers. Deliver Great Outcomes. /p pAbout the role /p pThe focus of this role is to bolster Auctane's global engineering and operations within the Information Security Group. This position reports directly to the CISO and entails the leadership of several security programs within the engineering and operations teams. /p pThe successful candidate will be instrumental in defining and developing the technology and processes governing cybersecurity practices to secure Auctane's global infrastructure. The role will specifically concentrate on securing the Enterprise and Cloud Infrastructures, alongside managing security operations responsibilities. This critical role requires a successful candidate to be a key contributor in establishing and evolving the technology and processes that define Auctane's global cybersecurity practices. The primary focus of this position is to secure the Enterprise and Cloud Infrastructures while also managing core security operations. /p pThe Infosec group operates as part of the broader RD Tech function, which utilizes modern architectural patterns and technologies, including AI, at scale and pace. /p pThis is a full remote position based in Spain with 10% international travel requirements. /p pAbout the team /p pWe have a flat and open engineering culture where diverse opinions and perspectives are valued, data and evidence beats opinion and hierarchy, backed by honest and frank discussions. We passionately believe in forming autonomous, cross functional teams who are empowered to deliver our ambitious strategy. Our engineering culture is characterized by its flat and open structure, where diverse opinions and perspectives are highly valued. Decisions are driven by data and evidence, superseding opinion and hierarchy, and are supported by candid and transparent discussions. We are strong advocates for the formation of autonomous, cross-functional teams who are fully empowered to execute our ambitious strategy. We strongly support cross-collaboration and mission driven autonomous teams that are given full authority to implement our ambitious strategy. Our ambitious strategy is implemented by autonomous, mission-driven teams that are fully empowered to act and strongly encouraged to cross-collaborate. /p pWhat will you be doing? /p ul liReview and enrich playbooks and see opportunities for automation efficiencies in our security detection and response capabilities. /li liLiaise with engineering teams on incident response, vulnerability management and remediation actions. /li liProvide technical expertise in the support of security incidents using leading security tools, coupled with continuous learning and training. /li liWork with AWS GCP cloud-native security tooling such as GuardDuty, Security Hub, and GCP Security Command Center to ensure protection and monitoring of threats in Auctane's public cloud environments. /li liFollow up on regular security reviews, vulnerability, risk assessments and audits utilizing our CSMP tool Wiz and endpoint vulnerability tool Crowdstrike. /li liBuild relationships with all staff to promote “Security by Design” throughout the engineering teams and wider business. /li liBe part of the internal Infosec / cyber security incident process – investigate suspected attacks and help manage security incidents, including providing post-mortem analysis, identifying causes, developing solutions and preventive measures. /li liRespond swiftly to new and emerging security threats and vulnerabilities, investigate suspected attacks and be an integral part of the information security incident process. /li liLearn and train to enhance knowledge of security orchestration and automation. /li /ul pWhat are we looking for? /p ul liBachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related technical field. /li li6+ years of progressive experience in cybersecurity, with at least 3‑5 years in leading large‑scale cyber security implementations. /li liExperience defining and leading several cyber security programs for large‑scale organizations. /li liAdvanced level experience in at least one or two security domains within the enterprise and cloud infrastructures to develop threat detection and mitigation strategies. /li liExperience leading projects and programs while defining the roadmap and milestones, and communicating with technical and non‑technical stakeholders while advising senior management. /li liExperience leading other engineers and analysts while collaborating with external team members. /li liAble to balance the demands of delivering high quality and demanding timescales. /li liRelevant industry certifications (e.g. CISSP, CISM, CRISC, AWS Security, GCP Security). /li /ul pWhat will make you stand out? /p ul liExpert‑level knowledge of AWS, Azure, and/or GCP security. /li liExpertise in vulnerability and risk management across public cloud and enterprise environments. /li liExpertise in leading advanced threats detection and prevention programs in a cross‑functional environment. /li liExpertise in developing security patterns with architectural recommendations. /li liAdvanced experience in software development practices, automation with basic knowledge of AI. /li /ul pThe tech stack /p ul liAWS, GCP, SaaS, and Enterprise. /li liArtificial Intelligence Solutions (Gemini, Claude, internal). /li liCNAPP, DSPM, and cloud security solutions. /li liApplication security technologies (DAST, SAST, SCA, ASM). /li liEmail security technologies. /li liSIEM solutions and detection technologies. /li liGoogle Workspace. /li liVulnerability management solutions. /li liApplication security. /li liPython, PowerShell, Bash. /li /ul pWhat do we offer? /p ul liClear and transparent compensation plan. /li liFlexible salary benefits – save on personal income tax with Cobee for expenses like transport, restaurants, and kindergarten. /li liPrivate health insurance – free for all employees via Cigna, plus we cover 50 % for your family members. /li liGenerous time off – enjoy 26 days of holiday per year (23 base days + birthday off, Christmas Eve, and New Year’s Eve). /li liYour gear, your choice – whether you prefer Mac or Windows, or need an extra screen, we’ll make sure you’re set up for success from day one. /li liAnnual salary review – we’re committed to recognizing your professional growth. Every year, we review salaries to reflect your individual development, achievements, and impact on our business success. /li liGrow your skills – we offer up to €2,000 / year in training (certifications, conferences, workshops) to boost your growth—both technical and personal. /li liLearning resources – access internal and external training, including platforms like LinkedIn Learning, completely free. /li liHolistic wellness program – includes access to Wellhub, Curalinc (psychological support), Rocketlawyer (legal advice), and regular health webinars challenges. /li liVolunteer day – take one day off a year to volunteer and give back. /li liHealth wellness support – get up to €55 / month to cover your gym or fitness classes. /li liWeekly language classes – improve or learn a new language (English, Spanish, French, Italian, or German) in small groups with expert instructors. /li liTime for health – get 8 hours per year for personal medical appointments and 10 hours per year to support your family’s medical needs. /li liWork‑life balance – we’re flexible and people‑first. We know life happens, and we aim to make work work for you. /li liInclusive, upbeat culture – no suits here – just a welcoming, casual, and respectful space where diversity is celebrated, and you can be your full self. /li liA global, multicultural team – we’re made up of 20+ nationalities, speaking 10+ languages. All communication is in English, so everyone’s included. /li liPacklink Pro discount – enjoy 99 % off your personal shipments using our platform. /li liReferral bonuses – know someone amazing? Earn €1K–€3K when you refer candidates we hire—depending on the role. /li liCentral Madrid office – when you want a change of scenery, drop by our office in the heart of Madrid—free snacks and drinks included. /li liTeam events – we work hard and play hard with regular team‑building activities and meetups. /li /ul /p #J-18808-Ljbffr