Cybersecurity Engineer

The Role:

We are looking for a talented and driven Cybersecurity Engineer to join our Security Operations team.

This is a highly hands-on role focused on threat investigation detection engineering and security platform operations. You will act as a key escalation point for complex incidents while continuously improving detection capabilities and strengthening our overall security posture.

Key Responsibilities:

Investigation & Incident Response

o Conduct in-depth investigations of threats and suspicious activities.

o Act as a critical escalation level for complex security incidents.

Detection Engineering

o Develop and manage detection rules.

o Improve visibility while reducing false positives and enhancing detection quality.

Security Platform Operations

o Administer and optimize key security tools: EDR/XDR SIEM Email Security AppSec PAM IAM.

o Provide operational support for additional technologies including Proxy NGFW and NAC.

Technical Documentation

o Produce and maintain Playbooks incident reports (RCAs) and standardized SOC procedures.

Automation & Engineering

o Contribute to automation initiatives using Python Terraform and Ansible.

Required qualifications:

Minimum of 5 years of experience in cybersecurity SOC (L2/L3) operations or a related field.

Hands-on experience implementing security platforms and managing incidents.

Our core stack is built on the Microsoft 365 ecosystem Palo Alto Networks and other leading vendors; however we highly value previous experience with similar tools such as Splunk CrowdStrike SentinelOne etc.

Strong knowledge of log administration network protocols (TCP/IP DNS HTTPS etc) and Windows/Linux system.

Operational knowledge of NIS2 ISO 27001 or CIS Controls.

Advanced level of English (daily working language).

Additionally valued:

o Relevant certifications such as CompTIA Security Blue Team Level 2 (BTL2) GIAC (GCIH/GCFA) CEH CISSP Microsoft SC-200/SC-300 or vendor-specific certifications (Palo Alto Splunk).

o Experience in DevSecOps environments and container security.

o Proven experience in cloud security (Azure AWS or GCP).

Soft Skills:

Strong analytical and troubleshooting ability.

Clear communication skills and collaborative mindset.

Commitment to continuous learning.

Assertiveness and ownership.

What do we offer

Join an innovative team and experience company growth.

We believe in investing in our employees and providing them with the opportunities they need to grow and develop their careers.

Enjoy a hybrid work environment.

We also offer flexible schedule.

We offer a remuneration that values your experience.

The position will have the base in Barcelona.

We are looking for outstanding people willing to join our mission to change this industry and help to build a better world.

If you feel identified with Openchip please contact us. We can offer a competitive compensation package in a flexible work schema that will help you to keep a balance between your personal and professional life.

At Openchip & Software Technologies S.L. we believe a diverse and inclusive team is the key to groundbreaking ideas. We foster a work environment where everyone feels valued respected and empowered to reach their full potential regardless of race gender ethnicity sexual orientation or gender identity.