GrepJob
Air Apps

Security Engineer

Air Apps
Apply
11 days ago
Barcelona, SpainMid Level / Senior

Responsibilities

  • Develop and implement threat modeling to identify security risks across applications and infrastructure.
  • Conduct vulnerability scanning, penetration testing, and security assessments to detect weaknesses.
  • Define and enforce secure coding practices in collaboration with development teams.
  • Work with DevOps to integrate security into CI/CD pipelines and automate security testing.
  • Monitor and respond to security incidents, conducting root cause analysis and implementing preventative measures.
  • Ensure compliance with security standards and regulations (e.g., ISO 27001, GDPR, SOC 2).
  • Design and implement identity and access management (IAM) policies, encryption standards, and authentication mechanisms.
  • Collaborate with product teams to conduct security reviews of features, APIs, and third-party integrations.
  • Develop incident response plans, security documentation, and best practices.
  • Stay ahead of emerging threats, vulnerabilities, and security technologies.

Requirements

  • Around 4+ years of experience in cybersecurity, application security, or security engineering.
  • Strong knowledge of secure coding principles, OWASP Top 10, and threat modeling techniques.
  • Experience with vulnerability scanning tools (Nessus, Qualys, Burp Suite) and penetration testing methodologies.
  • Hands-on experience with SIEM, intrusion detection systems (IDS), and security monitoring tools.
  • Proficiency in scripting and automation (Python, Bash, PowerShell) for security tasks.
  • Familiarity with cloud security in AWS, Azure, or GCP, including IAM and workload protection.
  • Knowledge of encryption protocols, network security, and API security best practices.
  • Experience working with DevSecOps, integrating security into CI/CD pipelines.
  • Ability to analyze security logs, detect anomalies, and mitigate potential threats.
  • Excellent problem-solving skills and ability to communicate security concepts to non-technical stakeholders.

Benefits

  • Apple hardware ecosystem for work.
  • Annual Bonus.
  • Top-tier Health and Life Insurance for peace of mind.
  • Transportation Budget to support your commute needs.
  • Coverflex benefits package for meal allowances, well-being, and more.
  • Childcare support.
  • Air Conference - an opportunity to meet the team, collaborate, and grow together.
  • Pension Fund to support your long-term financial planning.
  • Urban Sports Club membership to keep you active.
  • Meals 100% free at the hub.

Tech Stack

AWSAzureBashGoogle Cloud PlatformPowerShellPython

Categories

DevOpsSecurity