25070401 Arquitecto Seguridad (GTB)

Arquitecto Seguridad (GTB)

Location Málaga

The person will be a candidate to be hired internally.

As a Cyber Security Engineer your main objective will be to ensure compliance with security standards and principles :

• Evaluation and review of security architectures of the projects ensuring compliance with internal policies and principles.
• Support for the implementation of reference architectures, facilitating the adoption of the technologies and products of each project.
• Ensure compliance with Corporate Security policies, generating compliance standards for architectures.
• Ensure compliance with security reference standards, considering the recommendations of the Cyber Global architecture teams.
• Identify the best practices and trends applicable in security architectures.
• Alignment with the Global Cyber Security architecture teams, with active participation in global initiatives.
• Work closely with the CTO Architecture team.
• Engagement with CISO SCIB for alignment and priority definitions.
• Provide general advice in security topics.

EXPERIENCE

• More than 15 years of experience in IT, and at least 10 years of experience in a similar position.

EDUCATION

• Bachelor or Degree in Engineering, Computer Science and / or Telecommunication or similar background.
• AWS Certifications (is a must).
• Recognized Cyber Security certifications (at least one is a must) as ISACA, NIST, ISO, CompTIA Security+, CISSP+… etc.
• Vendors certifications (desired) as PaloAlto, Checkpoint, Cisco.

SKILLS & KNOWLEDGE

• Advanced English and Spanish level.
• Operational and analytical Cybersecurity :
• Digital Identity and Access Management : mastering the SAML and OpenID Connect standards.
• API security access : mastered in OAuth 2.0 JWT Bearer Grant and Auth Code with PKCE is a must.
• Good understanding of OSI Model in Network Layer.
• Secrets management.
• PKI environments, cryptography, CMEK / BYOK.
• Risk assessment / Impact analysis.
• AWS architecture practitioner.
• Threat modeling methodologies (STRIDE).
• Networking, security and high availability of telecommunications systems and services in each network layer.
• Experience in designing security solutions and architectures.
• Mastering documentation tasks.
• More extensive knowledge of cybersecurity : cyber-attack, cyber defense, secure architecture, security management and administration.
• Knowledge of microservices architecture : Docker, Kubernetes, etc.
• Knowledge of SecDevOps.
• Development and good coding methodologies knowledge.
• TOGAF desired.

• Strong communication skills, with high ability to work as a team.
• Accuracy and attention to detail.
• Banking scope knowledge.
• Critical thinking.
• Interpersonal relationships.
• Work under pressure.
• Problem solving.
• Optimism regarding uncertainty.
• Takes ownership.

Let’s connect if you’re passionate about building the future of technology!