Senior Security Engineer - Cloud Infrastructure
Chronos Consulting
Consultoría de búsqueda y selección de personal
08036 Barcelona, Cataluña - Spanien
Project Manager Sénior / Especialista sénior
Descripción del puesto
- Job Reference: 00000062-1
- Date Posted: 28 November 2025
- Recruiter: Coberon Chronos
- Location: Greater Barcelona area
- Remote Working: 100% remote working possible
- Salary: On Application
- Sector: IT & Tech, Enterprise Software, Cybersecurity, AI and Machine Learning, SaaS & PaaS
- Job Type: Remote, Hybrid
- Contact: Recruitment Manager
- Email: cv@coberonchronos.com
Job Description
Our client is a leading US enterprise AI startup.
They are looking for a highly skilled Senior Security Engineer to join their Product Security team in Barcelona (remote, full-time, permanent employment contract). You must be eligible to work in Spain/EU.
This role will focus on designing, implementing, and managing security solutions for their cloud-native platform on AWS. You will play a pivotal role in safeguarding our systems, ensuring compliance, and advancing our security posture.
Cloud Infrastructure Security: Design, implement, and manage security controls for AWS infrastructure.
Vulnerability Management: Perform vulnerability assessments and drive remediation efforts across cloud environments.
Automation & Monitoring: Automate security monitoring and incident response processes using industry best practices and tools.
Security Projects Leadership: Lead key initiatives and projects such as CNAPP selection and implementation, advanced threat detection, and custom security control development.
Penetration Testing: Conduct and analyze penetration testing exercises to identify and mitigate potential risks.
Compliance Support: Collaborate with compliance teams to ensure adherence to security standards like SOC 2 and ISO 27001.
Risk Assessments: Conduct technical risk assessments for critical infrastructure components.
Cross-Functional Collaboration: Work closely with DevOps, Infrastructure, and Application teams to embed security into the development lifecycle.
Incident Response: Lead investigations into advanced persistent threats (APTs) and other sophisticated security incidents. If you’re looking for a real challenge in terms of mission-criticality, multi-geographic region deployments, diversity of managed services, and the chance to be a part of an impactful team working with cutting-edge cloud technologies and more, then this might be the position for you!
Requirements
Education: Bachelor's degree in a related technical field. A Master's degree is advantageous.
Certifications: Essential: AWS Security Specialty, GIAC (e.g., GSEC)
Preferred: CISSP, OSCP, GPEN, GCIH
Years of Experience: 5-8 years in cybersecurity, focusing on cloud infrastructure security.
Deep expertise in AWS security services (e.g., EKS, IAM, KMS, GuardDuty, Config, Amazon Linux).
Proficient in scripting and automation (e.g., Python, Bash).
Hands-on experience with security tools like SIEM, IDS/IPS, and vulnerability scanners.
Advanced knowledge of penetration testing tools and methodologies (e.g., Metasploit, Burp Suite).
Expertise in network security, encryption standards, and IAM technologies.
Familiarity with compliance frameworks (e.g., SOC 2, ISO 27001).
Experience with security automation in DevSecOps environments.
Strong documentation and communication skills.