Cloud Security Engineer

CyberProof is a cyber security services and platform company whose mission is to help our customers react faster and smarter – and stay ahead of security threats, by creating secure digital ecosystems. CyberProof automates processes to detect and prioritize threats early and respond rapidly and decisively.

CyberProof is part of the UST Global family. Some of the world’s largest enterprises trust us to create and maintain secure digital ecosystems using our comprehensive cyber security platform and mitigation services.

We’re looking for a dynamic and driven Cloud Security Engineer to join the our team! In this role, you’ll take the lead in designing, implementing, and managing secure architectures in GCP and Microsoft Azure, ensuring our cloud environments are resilient, compliant, and ready to tackle today’s toughest cyber threats.

If you're someone who thrives on staying ahead of cyber threats, shaping robust cloud defenses, and making a real impact in a cutting-edge environment, we want you on our team!

Your main tasks and accountabilities will be :

• Manage Microsoft Defender XDR components for threat detection and response.
• Configure and maintain Microsoft Intune for endpoint and device management.
• Implement security hardening for critical Azure applications and access controls.
• Redesign Azure network security architecture with tools like Azure Firewall and NSGs.
• Implement Microsoft Purview for data governance, DLP, and compliance policies.
• Conduct security assessments to address vulnerabilities and misconfigurations.
• Oversee Azure IAM, including Azure AD and Conditional Access.
• Automate security tasks using IaC tools and scripting.
• Provide training on cloud security and stay updated on security trends.
• Design and implement GCP infrastructure to support SOC operations (e.g., Chronicle, BigQuery).
• Onboard new tenants, clients, and environments into the SOC ecosystem.
• Configure and maintain security tools like Google Security Command Center and SIEM / SOAR integrations.
• Automate deployment of security components using Terraform or Deployment Manager.
• Establish logging, alerting, and detection capabilities for SOC visibility.
• Collaborate with SOC teams and engineers for secure cloud operations.
• Enable cloud asset, identity, and activity log visibility for threat detection.
• Ensure compliance with security frameworks and support audits.
• Document procedures, templates, and runbooks for SOC enablement in GCP.

What do we expect from you?

• 3–5 years of IT experience with a focus on cloud security (Microsoft Azure).
• Expertise in Microsoft Azure security services, including Microsoft Defender (XDR), Intune, Purview, Azure Firewall, NSGs, and Private Link.
• Proficiency in Azure IAM and Azure AD.
• Experience with Google Cloud Platform (GCP) security tools such as Security Command Center (SCC), Chronicle SIEM, IAM, Cloud Logging / Monitoring, and VPC Service Controls.
• Background in SOC environments and cloud-native / hybrid architectures.
• Knowledge of logging pipelines, cloud onboarding, and SOAR platforms.
• Hands-on scripting (e.g., PowerShell, Python) and IaC tools (e.g., Terraform, ARM).
• Familiarity with security frameworks like ISO 27001 and standards like GDPR.
• Solid understanding of threat detection rules (e.g., YARA-L, Sigma) and incident response.
• Strong analytical, problem-solving, and communication skills.
• Ability to work independently and collaboratively.
• Proactive, detail-oriented, with excellent time management.
• Bachelor’s degree in Cybersecurity, Computer Science, or related field (or equivalent experience).
• Excellent written and verbal communication skills in English and Spanish, with the ability to explain technical concepts to both technical and non-technical audiences.
• Security Certifications : e.g., CCSP, CISSP, CompTIA Security+ (nice to have)

What do we offer?

• 23 days of Annual Leave plus the 24th and 31st of December as discretionary days.
• Remote work within Spain. Preferred location Barcelona as part of the team is in Barcelona and so you could benefit from different team building activities that we do in the team.
• Numerous benefits (Heath Care Plan, teleworking compensation, Life and Accident Insurances).
• Free access to several training platforms
• Professional stability and career plans
• Referral program
• The option to pick between 12 or 14 payments along the year.
• Real Work Life Balance measures (flexibility, WFH or remote work policy, compacted hours during summertime…)

Come join us in creating secure digital ecosystems at a global scale!