TL;DR

Senior Security Engineer (Cybersecurity): Leading incident response and optimizing security monitoring systems with an accent on cloud-native threat detection and incident lifecycle management. Focus on designing advanced mitigation strategies, ensuring regulatory compliance, and collaborating with development teams to enhance overall security posture.

Location: Must be based in Spain (Remote or Hybrid with hub in Barcelona)

Company

A global leader in healthcare technology, connecting patients with specialists across 13 countries to make the healthcare experience more human.

What you will do

  • Define the security operations roadmap and long-term defensive strategies.
  • Lead daily incident response and alert investigations across cloud and traditional environments.
  • Design, implement, and maintain security event monitoring and SIEM systems.
  • Develop remediation plans and enhance log monitoring capabilities for engineering teams.
  • Implement automation and threat intelligence feeds to improve security maturity.
  • Ensure compliance with standards such as NIST, ISO 27001, and SOC 2 Type 2.

Requirements

  • 5+ years of experience in security operations, alert triage, and incident response.
  • Proven ability to design and maintain monitoring and alerting systems from scratch.
  • Strong understanding of secure software development practices and OWASP Top 10.
  • Experience managing multiple work streams concurrently within the incident lifecycle.
  • Must be located in Spain (remote-friendly).
  • Effective communication skills for articulating complex technical issues to diverse stakeholders.

Nice to have

  • Proficiency in Python or Bash scripting and API integration.
  • Familiarity with NIST, CIS, ISO 27001, and PCI DSS standards.
  • Understanding of forensic processes.

Culture & Benefits

  • Flexible working hours with a remote-first approach.
  • Private healthcare plan for employees and subsidized for family (medical/dental).
  • Access to mental wellness support and gym partnerships.
  • Summer intensive schedule during July and August.
  • Share options plan eligibility after 6 months.
  • Paid holidays, including extra days for birthdays and work anniversaries.