Product Security Architect (7PM8FC-5BA84DA6) Barcelona, Spain
Our client is seeking a highly skilled Product Security Engineer to enhance the security architecture of their applications and services. This role offers an exciting opportunity to work in Greater Barcelona with a leading Medical Devices Company. The successful candidate will work closely with engineering, DevOps, and security teams to ensure robust security measures across the software development lifecycle.
As a Product Security Engineer, you will play a pivotal role in shaping the security landscape of our client's applications and services. Your expertise in Java, Spring Boot, OAuth2 authentication mechanisms using Cognito and Keycloak will be instrumental in defining secure application architectures. You will also be responsible for implementing data encryption strategies, securing API gateways, managing tokens, and conducting security code reviews alongside engineering teams. Your proactive approach towards securing Kafka-based event-driven architectures and PostgreSQL databases will ensure comprehensive security measures.
* Define and implement secure application architecture for microservices and APIs.
* Design and enforce security best practices using Spring Security and OAuth2 (Cognito, Keycloak).
* Ensure compliance with OWASP, NIST, GDPR, and other security standards.
* Implement and manage OAuth2 and OpenID Connect (OIDC) for authentication and authorization.
* Integrate and configure AWS Cognito and Keycloak for identity and access management.
* Develop and enforce secure coding practices in Java and Spring Boot applications.
* Implement data encryption, secure API gateways, and token management.
* Collaborate with engineering teams to conduct security code reviews and threat modeling.
* Ensure Kafka security (authentication, authorization, and encryption).
* Implement PostgreSQL security best practices.
What you bring:
The ideal Product Security Engineer has extensive experience in cybersecurity or related fields. Strong programming skills in Java, Spring Boot, and Spring Security are essential. Hands-on experience with OAuth2, OIDC, Cognito, and Keycloak for authentication and authorization is required. Proficiency in securing Kafka-based architectures and PostgreSQL security measures is highly valued. A deep understanding of network security, IAM, DevSecOps best practices, threat modeling, penetration testing, and vulnerability management is necessary. Familiarity with compliance frameworks such as GDPR, SOC2, and HIPAA will further strengthen your application.
What sets this company apart:
Our client is a leading Medical Devices Company based in Greater Barcelona, known for innovation and quality. They offer a supportive environment that encourages collaboration and professional growth, investing in employee development and continuous learning opportunities.
What's next:
If you're ready to advance your career, apply now!
Name:
Please include your first and last name.
Email:
Please include your email address.
Phone:
Please include your country code.
CV / Resume:
Please upload your CV or Resume.
Work eligibility:
Yes, I am currently eligible to work (work permit/visa/citizenship) in the country to which I am applying.
No, I am not currently eligible to work (work permit/visa/citizenship) in the country to which I am applying.
#J-18808-Ljbffr