DevOps Engineer (Cybersecurity) en Madrid

We are looking for a qualified DevOps Engineer to join our security team to help us evolve our Cloud Security offer within the MSSP Offering. Day to day, as our DevOps engineer you will work with members of all other teams to help create and support environments, design, build and automate infrastructure and deployment pipelines securely with integrations into the security monitor service.

You will execute and automate operational processes fast, accurately and securely. If you have a solid background in software/systems engineering and are familiar with the tools we use, we’d like to meet you!

The Security Engineer will work in close partnership with technology management, application developers, network/infrastructure/technology teams as well as Security Managers to build and implement service offering. She/he will provide security guidance and expertise on new projects and implementations.

Key Responsibilities 

• Instrumental in automating and improving Security through the implementation of the DevSecOps program. Able to test, validate and articulate all vulnerabilities.
• Coordinate and perform vulnerability assessments (Dynamic, Static, Open-Source, Systems) with automated and manual tools. Review and analyze vulnerability data to identify security risks to the organizations network, infrastructure, and applications.
• Interpret vulnerability data, communicate business impact and remediation actions to the technical teams and business leaders.
• Coordinate remediation of vulnerabilities within established timeframes. Create and implement security controls and recommendations in DevOps process
• Research and analyze security aspects of new capabilities offered by Telefónica in its cloud services, making corresponding security recommendations to customers’ development and operations teams
• Design and build out enterprise cloud security solutions that meet customer needs in automation, monitoring, and DevSecOps
• Validate and provide security hardening guidance of cloud-based services. Facilitate security automation by working with cloud service provider APIs, SDKs, and custom source code
• Perform application risk assessments and threat modeling using standard security frameworks such as NIST 800-30 and OWASP for cloud services as well as its software offerings
• Build out and create security validation for new capabilities in cloud environments for sandbox, non prod, and prod environments
• Use standard security frameworks to perform gap analysis between different cloud providers, cloud type, and level of certification in the context of compliance efforts (DML: quizas mas rol de Consultor)
• Develop and document cybersecurity exceptions and work with senior cybersecurity team members to update procedures and make product improvement recommendations

Qualifications:

• Bachelor’s or master’s in computer science or related field.
• 3-5 years experience.
• Familiarity optimizing configuration management and server deployment using automation and DevOps, with a strong preference towards PowerShell DSC, Chef, Terraform and Packer, Jenkins, Nexus/Artifactory, Git, and TFS Source Code Repository
• Experience with cloud architecture and components including compute, storage, and networking as well as scripting experience (tools, process, methods, troubleshooting) and deployment concepts such as continuous integration

Fluent written and spoken Spanish and English are mandatory.

Desirable :

•  Good knowledge of DevOps scripting: Ruby, Python, Bash, etc. Strong AWS Deployment Experience Docker/Rancher/Kubernetes container infrastructure and  orchestration. Configuration Management Tools (Terraform, Chef, Salt, Puppet) Build and Deployment Management (Jenkins) in a CI/CD workflow IAAS, PAAS, SAAS Product Experience HA Systems Architecture. Experience with High Volume Web Services including queues. Experience with Microservices/Serverless Architectures
   
  Who are we and what are we going to offer you?
  At TIS (Telefónica Ingeniería de Seguridad), we have set out to make the world a safer place, providing solutions that protect lives, goods and guarantee the essential services for society, giving continuity to business.
  As a security company of the largest telecommunications company in Spain, we face our own challenges and transfer our differential value to Telco and our customers.
  You will be part of Grupo Telefónica, with the usual benefits and you will join our Cybersecurity team, a leader in the use of technologies and tools, where you will work with the best and for the best.
  #WeChooseEveryone
  Our diversity makes us stronger and more competitive. There's a place for everyone the way we are. In Telefónica we work more than 125,000 people, get rid of this great opportunity. We chose All... And, yes, we also chose everyone
  #IEquality
  TIS is committed to Equal Opportunities for women and men.