Senior IT Security Specialist PSD Group • Chazo, Galicia, España Location:
Barcelona (Hybrid)
Salary:
Negotiable + 10% Bonus + Car Allowance
Benefits:
25 Days Annual Leave, Medical Insurance, Life Insurance, Meal Vouchers, Employee Assistance Programme, Flexible Working and Retirement Plan.
About the Client
My client is the air transport industry's IT provider, delivering solutions for airlines, airports, aircraft, and governments. Their technology powers more seamless, safe, and sustainable air travel. They are looking to hire an experienced Senior IT Security Specialist on a permanent basis.
About the Role
The Senior IT Security Specialist will strengthen our infrastructure and cloud environments, embed security controls into engineering workflows, and improve operational resilience. This role combines technical depth with a builder mindset—designing secure configurations, automating validation, leveraging AI‑assisted security capabilities, and supporting incident response. We value diverse perspectives and encourage applications from all qualified candidates, regardless of gender, background, age, disability, or neurodiversity.
Key Duties
* Security Hardening and Compliance: Implement and maintain security baselines for Windows and Linux systems (e.g., GPO, SELinux). Integrate security validation into CI/CD pipelines and Infrastructure‑as‑Code (IaC) workflows using Terraform and Ansible.
* Cloud Security: Design and enforce governance policies in Azure; remediate misconfigurations and vulnerabilities. Improve cloud security posture through automation and policy‑as‑code using AI‑assisted tools.
* Platform and Network Security: Secure containerized environments (e.g., Kubernetes) with RBAC, network policies, and configuration controls; optimize firewall rules.
* Vulnerability and Compliance Management: Operate and maintain vulnerability scanning tools; ensure coverage and timely remediation.
* Collaborate with engineering teams to automate vulnerability handling and reduce manual effort.
* Incident Response: Use AI‑driven analytics and enrichment tools to accelerate incident detection, investigation, and root‑cause analysis. Participate in triage and forensic analysis, working with SOC team (SIEM/EDR) and following escalation procedures.
* Security Architecture and Solution Validation: Analyse new security requirements and emerging technologies; design and deploy proof‑of‑concept environments for security tools or architectures; document findings and provide recommendations for production rollout.
* Compliance Supports: Understand the compliance structure (e.g., ISMS, SOC‑2) and provide required support. Lead security hardening efforts across servers and network devices; support compliance initiatives such as ISO 27001, GDPR, or NIST.
* Review and enhance identity and access management (IAM), including MFA, privileged account management, and conditional access.
What we are looking for Knowledge & Skills
* 3–5+ years of relevant experience or equivalent practical expertise.
* Practical exposure to security hardening, compliance support, and automation.
* Evidence of handling critical situations (security incidents, audit findings) and applying lessons learned.
* Strong knowledge of Windows and Linux security internals and hardening techniques.
* Hands‑on experience with Azure security architecture, policy enforcement, and governance.
* Practical skills in Kubernetes security and containerized workloads.
* Familiarity with CI/CD security integration and IaC tools (Terraform, Ansible).
* Experience operating vulnerability scanning and compliance tools.
* Ability to perform forensic analysis and support incident response workflows.
* Ability to translate security requirements into actionable technical solutions.
* Strong communication skills for cross‑team collaboration.
* Certifications such as AZ‑500, CKS, CISSP, or equivalent.
* Experience with policy‑as‑code frameworks (e.g., OPA/Conftest).
* Exposure to AI‑enabled security tools (UEBA, AI‑driven SIEM, SOAR, vulnerability prioritization).
* Experience with operation mandates in complex environments.
* Background in automating security controls and evidence collection for compliance audits.
#J-18808-Ljbffr