Especialista en Seguridad de Aplicaciones y CASB

Andalucía, Aragón, Asturias, País Vasco, Cantabria, Castilla y León, Castilla-La Mancha, Cataluña, Extremadura, Galicia, La Rioja, Madrid, Murcia, Navarra, Comunidad Valenciana, No peninsular

We are looking for the very Top Talent...and we would be delighted if you were to join our team! More in details, UST is a multinational company based in North America, certified as a Top Employer and Great Place to Work company with over 35.000 employees all over the world and presence in more than 35 countries. We are leaders on digital technology services, and we provide large-scale technologic solutions to big companies. What we look for? We are seeking a proactive Cloud Security Specialist with a minimum of 3 year's experience working with AWS. Main tasks and accountabilities will be: Cloud Security Management: Monitor, secure and optimize AWS environments, ensuring alignment with industry, best practices and internal definitions. Manage Cloud Security Posture Management (CSPM) tools, such as Sysdig or comparable solutions. Risk and Compliance: Perform regular risk assessments, vulnerability scans and security audits. Implement and enforce compliance with GRC frameworks and regulatory standards (CIS, NIST and others). Tool and Automation Integration: Develop and maintain automation scripts using Python and policy-as-code with Rego to enhance security posture. What do we expect from you? At least 3 years of hands-on experience with AWS security implementations. Solid understanding of cloud security principles, GRC frameworks and compliance standards such as CIS and NIST. Bilingual proficiency in Spanish and English, both written and verbal. Practical experience with Python scripting and Rego for policy definition and automation. Experience with Infrastructure as Code (IaC) tools (e.g., Terraform, CloudFormation) Experience container orchestration (e.g., Kubernetes). Understanding of DevSecOps practices and integration of security within continuous delivery pipelines. Technical Expertise: Deep knowledge of cloud architecture, security best practices and automation tools. What can we offer? 23 days of Annual Leave plus the 24th and 31st of December as discretionary days! Numerous benefits (Health Care Plan, teleworking compensation, Life and Accident Insurances). Retribución Flexible´ Program: (Meals, Kinder Garden, Transport, online English lessons, Health Care Plan...) Free access to several training platforms Professional stability and career plans UST also, compensates referrals from which you could benefit when you refer professionals. The option to pick between 12 or 14 payments along the year. Real Work Life Balance measures (flexibility, WFH or remote work policy, compacted hours during summertime...) UST Club Platform discounts and gym Access discounts If you would like to know more, don't hesitate to apply and we'll get in touch to fill you in detail. We are waiting for you! In UST we are committed to equal opportunities in our selection processes and do not discriminate based on race, gender, disability, age, religion, sexual orientation or nationality. We have a special commitment to Disability & Inclusion, so we are interested in hiring people with disability certificate.

Andalucía, Aragón, Asturias, País Vasco, Cantabria, Castilla y León, Castilla-La Mancha, Cataluña, Extremadura, Galicia, La Rioja, Madrid, Murcia, Navarra, Comunidad Valenciana, No peninsular

Description: En GP DIGITAL para importante compañia del sector seguros tenemos una vacante de Ingeniero de Seguridad de Aplicaciones ( Security Engineer ) Funciones Para actuar como Security Champion en esta área, responsabilizándose de tareas como: Soporte a los equipos técnicos en materia de seguridad en el desarrollo e implantación/automatización de controles de seguridad a lo largo del ciclo de desarrollo (SAST, DAST, SCA, IaC y Container Security) Interlocución con equipos de desarrollo, arquitectura y de pruebas de seguridad. Soporte a la identificación y/o definición de requisitos de seguridad de las aplicaciones desarrolladas. Seguimiento de indicadores y métricas de seguridad, y colaboración para la creación de dashboards y reportes de estado de seguridad de las aplicaciones a nivel técnico. Participación en la automatización de controles y monitorización del estado de seguridad de las aplicaciones, Formación continua en buenas prácticas de diseño y desarrollo seguro a los equipos de desarrollo y fomento del uso de dichas buenas prácticas entre los equipos. Soporte a las pruebas de seguridad de las aplicaciones y a la remediación de defectos y vulnerabilidades. Colaboración en la mejora continua del modelo de desarrollo seguro Plan de desarrollo profesional esperado, para completar el rol (compromiso esperado del candidato Requisitos: Minimo 3 años de experiencia en puesto similar Experiencia como desarrollador senior o diseñador técnico de aplicaciones en ámbitos como el desarrollo de aplicaciones web, móviles o aplicaciones cloud native. Experiencia con arquitecturas de aplicaciones basadas en microservicios (Java, .NET), APIs y/u orientadas al cloud (Docker, Openshift, AWS, Azure, IBM Cloud) Experiencia en modelos DevSecOps Experiencia en la utilización e implantación de herramientas de seguridad durante el desarrollo, con conocimiento de herramientas SAST, DAST y SCA al menos. Alguna formación relevante en materias relacionadas con ciberseguridad y/o seguridad de aplicaciones. Conocimientos de marcos de riesgos de seguridad en aplicaciones como OWASP Top 10, SANS 25 o similar Inglés minimo B1 (capacidad de tener una conversación técnica). Otros aspectos a valorar Algún Máster/Formación especializada en materia ciberseguridad. Alguna certificación técnica relevante en materia de seguridad de aplicaciones como CASE o similar. Experiencia en arquitecturas Cloud (AWS, Azure, IBM Cloud, Openshift, Docker). Participación en la elaboración de modelos de amenaza siguiendo las directrices del arquitecto/líder de seguridad del proyecto. ¿Qué es lo que le ofrecemos? Salario competitivo en función de la experiencia aportada Contrato indefinido u Opción de Contrato Mercantil. 22 días laborables de vacaciones. Plan de retribución flexible: Seguro médico, cheques guardería, cheques transporte. Formación en Tecnología y Soft Skills. Programa de referidos: 500 EUR por candidatos recomendados que se incorporen con nosotros. Ubicación: España. Imprescindible residir en territorio español // permiso de trabajo en vigor Modalidad de trabajo: 100 % remoto en cuanto a nosotros .. Grupo Digital Somos un equipo de más de 150 profesionales tecnológicos, en el que encontraras proyectos estables, en los principales clientes nacionales e internacionales, desarrollando soluciones de Inteligencia Artificial, Cloud, Ciberseguridad, etc.... Amplia informacion en nuestra web www.grupodigital,eu Minimum requirements: #SecurityEngineer #DevSecOps #CASE

Andalucía, Aragón, Asturias, País Vasco, Cantabria, Castilla y León, Castilla-La Mancha, Cataluña, Extremadura, Galicia, La Rioja, Madrid, Murcia, Navarra, Comunidad Valenciana, No peninsular

We are more than 2,700 talents, but we're missing you! At Knowmad Mood, we continue to invest in technology innovation, and, most importantly, PEOPLE with many challenges to explore and dreams to fulfill. Are you the new team member we're looking for? What do we offer? 100% remote work Work from anywhere with total flexibility, as long as you have a good internet connection. Flexible schedule ⏰: Adapt your workday to your personal rhythm, coordinating with your team to maintain an ideal work-life balance. Vacation: Enjoy 22 vacation days plus 2 additional personal days, as well as December 24 and 31 off. Permanent contract: From day one, with the option to choose whether to receive your salary in 12 or 14 payments. Flexible compensation: Choose how to allocate part of your salary to tax-beneficial products or services such as meal vouchers, childcare vouchers, health insurance, or training. Continuous learning: Access platforms like Udemy Business, as well as language courses, official certifications, and technical training tailored to your needs and pace. Career development: Design your own growth path, with support to advance within the company, transition between communities, or take on leadership roles. Comprehensive well-being: Access our wellness program, including healthy nutrition, physical activity, and emotional balance workshops. Who are we looking for? &#*texto oculto*5; Our client is seeking an experienced Hands-On Architect to join our Architecture Team. The ideal candidate should have a proven track record of at least 7 years in hands-on development of distributed applications, proficiency in Typescript and Angular, and a strong grasp of architectural principles. This role involves working autonomously, collaborating effectively in geographically distributed teams, and actively contributing to architectural decisions. The successful candidate will play a key role in shaping and evolving our software architecture for modularity and scalability. Technical Requirements: Advanced proficiency in TypeScript Minimum of 6 years of hands-on experience with Angular, including deep knowledge of Angular modules, components, and services. Strong experience with Node.js and its integration with frontend technologies. Expertise in containerization and deployment using Docker. Proficiency in unit testing with Jest and end-to-end testing using Cypress or Playwright. Familiarity with Nx (Nx.dev) and experience in creating and managing generators/executors. Solid understanding of micro-frontend platforms and architectures. Proficiency with OpenAPI definition and generator tools. Preferred Qualifications: Experience with Kubernetes and cloud platforms like AWS or Azure. Familiarity with CI/CD pipelines and tools such as Jenkins or Azure DevOps. Strong problem-solving skills and attention to detail. Excellent communication and leadership skills. Desired hands-on experience in breaking up monolithic applications into more modular and scalable microservices. If you are passionate about technology and enjoy working in a team, this is your opportunity! Sign up, and we'll share more details! At Knowmad Mood, we are committed to diversity and inclusion, creating equal opportunities for all qualified candidates, with no distinction of any kind. #Somosknowmadmood Join us!

Andalucía, Aragón, Asturias, País Vasco, Cantabria, Castilla y León, Castilla-La Mancha, Cataluña, Extremadura, Galicia, La Rioja, Madrid, Murcia, Navarra, Comunidad Valenciana, No peninsular

Desde CMV Consultores estamos buscando incorporar un perfil Arquitecto/a de Seguridad DevSecOps para un proyecto 100% teletrabajo en colaboración con uno de nuestros clientes más importantes SE OFRECE: 100% teletrabajo Salario en función de la experiencia aportada Proyecto a largo plazo SE NECESITA: Experiencia en seguridad en el desarrollo (SSDLC). Manejo de herramientas como: Fortify (análisis SAST), Sysdig (escaneo de imágenes), IriusRisk (modelado de amenazas). Conocimiento práctico de automatización y despliegue con GitHub Actions, Ansible. Conocimiento de gestión de vulnerabilidades, especialmente en torno a CVE y su tratamiento. Dominio de seguridad en entornos cloud y seguimiento de posture management y compliance. Capacidad para crear informes de cumplimiento normativo y análisis de datos de seguridad Conocimientos de Normativa ISO 27001, ENS (Esquema Nacional de Seguridad), NIS2 (Directiva europea sobre seguridad de redes y sistemas de información