Identity Security Architect ***Barcelona

Madrid, Andalucía

We are still looking for the very Top Talent...and we would be delighted if you were to join our team! More in details, UST is a multinational company based in North America, certified as a Top Employer and Great Place to Work company with over 35.000 employees all over the world and presence in more than 35 countries. We are leaders on digital technology services, and we provide large-scale technologic solutions to big companies. What we look for? We are looking for a Security Architect to join our team and work on exciting projects for one of our clients in the banking sector. More than 15 years of experience in IT, and at least 10 years of experience in a similar position. AWS Certifications Recognized Cyber Security certifications (at least one is a must) as ISACA, NIST, ISO, CompTIA Security+, CISSP+... etc. Vendors certifications (desired) as PaloAlto, Checkpoint, Cisco. Location: Hybrid (Madrid or Málaga) Key Responsibilities: As a Cyber Security Engineer your main objective will be to ensure compliance with security standards and principles: Evaluation and review of security architectures of the projects ensuring compliance with internal policies and principles. Support for the implementation of reference architectures, facilitating the adoption of the technologies and products of each project. Ensure compliance with Corporate Security policies, generating compliance standards for architectures. Ensure compliance with security reference standards, considering the recommendations of the Cyber Global architecture teams. Identify the best practices and trends applicable in security architectures. Alignment with the Global Cyber Security architecture teams, with active participation in global initiatives. Work closely with the CTO Architecture team. Engagement with CISO for alignment and priority definitions. Provide general advice in security topics. Mandatory requirements: Advanced English and Spanish level. Operational and analytical Cybersecurity: Digital Identity and Access Management: mastering the SAML and OpenID Connect standards. API security access: mastered in OAuth 2.0 JWT Bearer Grant and Auth Code with PKCE is a must. Good understanding of OSI Model in Network Layer. Secrets management. 5. PKI environments, cryptography, CMEK/BYOK. 6. Risk assessment / Impact analysis. AWS architecture practitioner. Threat modeling methodologies (STRIDE). Networking, security and high availability of telecommunications systems and services in each network layer. Experience in designing security solutions and architectures. More extensive knowledge of cybersecurity: cyber-attack, cyber defense, secure architecture, security management and administration. Knowledge of microservices architecture: Docker, Kubernetes, etc. ¿What can we offer? 23 days of Annual Leave plus the 24th and 31st of December as discretionary days! Numerous benefits (Heath Care Plan, Internet Connectivity, Life and Accident Insurances). Retribución Flexible´ Program: (Meals, Kinder Garden, Transport, online English lessons, Heath Care Plan...) Free access to several training platforms Professional stability and career plans UST also, compensates referrals from which you could benefit when you refer professionals. The option to pick between 12 or 14 payments along the year. Real Work Life Balance measures (flexibility, WFH or remote work policy, compacted hours during summertime...) UST Club Platform discounts and gym Access discounts If you would like to know more, do not hesitate to apply and we'll get in touch to fill you in details. UST is waiting for you! In UST we are committed to equal opportunities in our selection processes and do not discriminate based on race, gender, disability, age, religion, sexual orientation or nationality. We have a special commitment to Disability & Inclusion, so we are interested in hiring people with disability certificate.

Andalucía, Aragón, Asturias, País Vasco, Cantabria, Castilla y León, Castilla-La Mancha, Cataluña, Extremadura, Galicia, La Rioja, Madrid, Murcia, Navarra, Comunidad Valenciana, No peninsular

SEEKING: GCP Cloud Lead Security We are looking for a GCP Cloud Lead Security The GCP Cloud Lead Security will be responsible for defining low level strategy and configurations and supporting in the deployment of security solutions as part of GCP Cloud Strategy (Data Migration, Endpoint protection including server protection, Cloud App Security, Identity Protection, CSPM, CIEM, Workload protection) and security for GCP-based projects. TASKS & RESPONSABILITIES (Role) He/she will oversee and define technical strategy (low level design) and configurations for the following among other security solutions associated with GCP environment/s: Endpoints protection against real-time malware by identifying and blocking threats and attack surface reduction including endpoint data loss prevention. Implement strict IAM policies to ensure that only authorized users access cloud resources. Anomaly Behaviour. Apps adaptive access, device compliance and access control. Infrastructure security (serverless, containers, IaaS, PaaS, Databases). Cloud App Security (SaaS). GCP Policies and Security Governance. Security Posture Management (Cloud Compliance). WAF/DDoS Privilege access Management. File Integrity Monitoring. Integration of Logs with SIEM for monitorization Definition of use case scenarios for monitorization of GCP apps together with SOC. Strategy for AI in GCP Cloud. He/she is an operational partner and will report to the client´s Global CISO EXPERIENCE, KNOWLEDGE & SKILLS Proven work experience as a Security Engineer or GCP Platform Security Expert or similar role, with strong technical background in various IT security technologies, including infrastructure, applications, data, cloud, and network communications. Strong experience working in complex multi-country, multi-cultural, environments. Extensive experience in migration projects, moving high volume databases from legacy to cloud native solutions. An enthusiasm for staying up to date with the very latest updates about security threats and solutions. Strong time management and organizational skills Previous exposure to Linux and/or Windows Operating Systems, coding languages, and/or Networks. Strong experience on major's ERPs (SAP) with a wide experience rolling out them. Strong experience on GCP and other cloud vendors technologies (Microsoft and AWS). Strong data-oriented mindset. Excellent technical, analytical and project management skills to manage large-scale IT projects. Good leadership and interpersonal skills and be able to build strong relationships with key stakeholders. Good understanding how the different technology components in the organization support its business operations. Excellent communication skills and ability to effectively communicate the IT architecture & data strategy and plans to stakeholders and IT team members. Strong problem-solving skills to identify and manage IT architecture security risks and issues. Strong analytical and critical thinking skills, ability to work under pressure. Be an effective team player working both within and outside the IS/IT organisation. Work to bring stakeholders along with decisions. Ability to work independently and pro-actively contribute to a global team environment. Excellent interpersonal, communication and presenting skills; able to concisely communicate security risks to both technical and business audiences. Industry certification from vendors: ISC2, ISACA, GIAC, EC-Council, CompTIA, ITIL, Comptia Security Strong written and verbal communication skills in English Experience in some of the following areas: o Security products including firewalls, URL filtering, information security and EDR/XDR/NDR including Microsoft E5 license stack products and GCP security. o Emerging technologies and trends (ICS&OT, IIOT, Network, Infra, Cloud, data encryption, automotive industry technologies and vehicle security, etc.) o Identify and understand the most common application security vulnerabilities (OWASP Top 10). o Relevant laws, regulation and industry standards and frameworks related to security (NIST, SANS, CIS, ENISA, UNE, GDPR, PCI-DSS, SOC2, etc.). o Implement security controls to improve system/platform overall security. o Identity and Access Management. o Application Security, cryptography and protocols. o Secure System Development Live Cycle o Security Incident Management and monitoring o Security Operations, and Cyber Security o Vulnerability management and penetration testing o Information Security Management, Risk Management, and Asset Security o Endpoints and Server Security, MDM/MAM, Network Security, and Cloud Security o Security standards, laws, and compliance. o Business continuity and disaster recovery continuity of operations plans. Language : Fluent in English with exceptional communication skills.( minimum C1) WE OFFER: · Full-time Freelance contract · Rate: EUR320/EUR360 per day + VAT (According to proven experience) · Long Term Project. Recurrence in Projects · Location: Madrid - (Alcobendas) Hybrid 50% in person 50% teleworking per week

Andalucía, Aragón, Asturias, País Vasco, Cantabria, Castilla y León, Castilla-La Mancha, Cataluña, Extremadura, Galicia, La Rioja, Madrid, Murcia, Navarra, Comunidad Valenciana, No peninsular

En Rawson BPO buscamos un DevOps - Software Engineer con experiencia en infraestructura y automatización en AWS para dar soporte a proyectos de Generative AI (GenAI). Un Ingeniero de Software con fuerte enfoque en DevOps, Backend y Cloud (AWS), capaz de construir y desplegar infraestructura escalable y segura, automatizar pipelines, e integrar modelos GenAI en entornos productivos. Responsabilidades Implementar y mantener infraestructura AWS para cargas de trabajo GenAI en producción, utilizando servicios como Lambda, API Gateway, DynamoDB, Bedrock, S3, SageMaker e IAM. Desarrollar y mantener componentes GenAI reutilizables en Python, integrados con servicios AWS, incluyendo logging, monitoring y pruebas automatizadas. Diseñar y gestionar infraestructura como código mediante Terraform. Construir y mantener pipelines CI/CD con GitHub Actions (validación, testing, despliegue y chequeos post-deployment). Implementar políticas de seguridad e IAM robustas para la ejecución de cargas GenAI. Colaborar con equipos multidisciplinares (Data Scientists, Backend Engineers y DevOps). Requisitos Experiencia mínima de 5 años en entornos IT. Nivel de inglés C1. Conocimientos obligatorios: AWS (Lambda, API Gateway, Bedrock, S3, SageMaker, IAM). Desarrollo en Python para construcción e integración de componentes GenAI. Terraform para provisión y gestión de infraestructura AWS. CI/CD con GitHub Actions (testing, despliegue y monitorización).

Cataluña

Description: Desde Grupo Digital estamos en la búsqueda de un experto en seguridad Cicso para formar parte de nuestro equipo y colaborar con uno de nuestros clientes del sector servicios tecnológicos. Qué harás: Diseño y ejecución de proyecto de Migración a Cisco SSE Ejecución de de proyecto de Migración de Csco ISE a Azure Elaboración del diseño del servicio Cisco ZeroTrust. Documentación de proyecto Documentación de Servicio Traspaso de conocimientos de los Proyectos. Participación y soporte en tareas de administración entornos de Seguridad Formación Interna Imprescindible: Experto en despliegue y administración de soluciones de seguridad de Cisco: o Migración y evolución Cisco Umbrella y Cisco anyconnect. Cisco Secure Access Secure Internet Access (SIA) Secure Private Access (SPA) Secure Web Gateway (SWG) Zero Trust Network Access (ZTNA) CASB DNS Security Integración con Identity Services Engine (ISE) Módulos adicionales Experiencia en servicios IaaS en Azure. Deseable: Experiencia en otras soluciones zTrust como zScaler. Condiciones: Contrato: Indefinido Ubicación: Barcelona. Modalidad de trabajo: híbrida en Barcelona. También se valorarán perfiles de otras ubicaciones en España con posibilidad de trabajar en remoto. Horario: Jornada completa Salario: en función de la experiencia laboral Grupo Digital Somos un equipo de más de 100 profesionales tecnológicos, en el que encontraras proyectos estables, en los principales clientes nacionales e internacionales, desarrollando soluciones de Inteligencia Artificial, Cloud, Ciberseguridad, etc.... Nos comprometemos estar a tu lado en todas las fases del proyecto, para asegurarnos que creces profesionalmente con nosotros, y que tu aportación cuenta. ¿Quieres estar al día con las últimas tecnologías y buscas nuevos desafíos? ¡Envíanos tu CV y nos ponemos en contacto contigo!