CyberProof is a cyber security services and platform company whose mission is to help our customers react faster and smarter – and stay ahead of security threats, by creating secure digital ecosystems. CyberProof automates processes to detect and prioritize threats early and respond rapidly and decisively.
CyberProof is part of the UST Global family. Some of the world’s largest enterprises trust us to create and maintain secure digital ecosystems using our comprehensive cyber security platform and mitigation services.
We're on the hunt for a passionate Cloud Security Engineer to join our team here at CyberProof! In this role, you'll be at the heart of designing, implementing, and safeguarding the security posture of our cloud environments, with a strong focus on Microsoft Azure.
If you're someone who thrives on staying ahead of cyber threats, shaping robust cloud defenses, and making a real impact in a cutting-edge environment, we want you on our team!
Your main tasks and accountabilities will be:
Implement, configure, and manage Microsoft Defender for Endpoint, Defender for Cloud, Defender for Identity, and other XDR components to provide comprehensive threat detection, investigation, and response capabilities across the environment. Configure and manage Microsoft Intune for secure endpoint management, including mobile device management and mobile application management, ensuring compliance and data protection on managed devices. Implement security hardening measures for critical applications deployed in Azure, following industry best practices and security frameworks. This includes configuring secure configurations, managing access controls, and implementing application-level security controls. Evaluate and redesign Azure network security architecture to enhance security posture. This includes implementing and managing Azure Firewall, Network Security Groups (NSGs), Azure Private Link, and other networking security services to segment networks, control traffic, and prevent unauthorized access. Implement and manage Microsoft Purview for data governance, data loss prevention (DLP), and compliance. This includes classifying sensitive data, monitoring data usage, and enforcing data protection policies across Azure and Microsoft 365 services. Review regular security assessments and audits of cloud environments to identify vulnerabilities and misconfigurations. Manage Identity and Access Management (IAM) solutions in Azure, including Azure Active Directory (Azure AD) and Conditional Access policies. Automate security tasks and processes using scripting and Infrastructure-as-Code (IaC) tools. Stay up-to-date with the latest cloud security threats, trends, and best practices. Provide guidance and training on cloud security best practices to other teams.
What do we expect from you?
3-5 years of experience in IT, with a significant focus on cloud security, specifically within Microsoft Azure. In-depth knowledge of Microsoft Azure security services and best practices. Hands-on experience with Microsoft Defender for XDR (Endpoint, Cloud, Identity). Experience with Microsoft Intune for endpoint security and management. Strong understanding of Azure networking concepts and security services (Azure Firewall, NSGs, Private Link). Experience with implementing security hardening for Azure applications and infrastructure. Familiarity with Microsoft Purview for data governance and DLP. Solid understanding of Identity and Access Management (IAM) principles and Azure AD. Proficiency in scripting languages (e.g., PowerShell, Python) and Infrastructure-as-Code (e.g., ARM templates, Terraform). Knowledge of security frameworks and compliance standards (e.g., ISO 27001, GDPR). Experience with security monitoring and incident response processes. Strong analytical and problem-solving skills with a security-first mindset. Excellent written and verbal communication skills in English and Spanish, with the ability to explain technical concepts to both technical and non-technical audiences. Ability to work independently and as part of a collaborative team. Proactive and detail-oriented approach to security. Strong organizational and time management skills. Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, or a related field (or equivalent experience). Security Certifications: e.g., CCSP, CISSP, CompTIA Security+ (nice to have)
What do we offer?
23 days of Annual Leave plus the 24th and 31st of December as discretionary days. Remote work within Spain. Preferred location Barcelona as part of the team is in Barcelona and so you could benefit from different team building activities that we do in the team. Numerous benefits (Heath Care Plan, teleworking compensation, Life and Accident Insurances). `Retribución Flexible´ Program: (Meals, Kinder Garden, Transport, online English lessons, Heath Care Plan…) Free access to several training platforms Professional stability and career plans Referral program The option to pick between 12 or 14 payments along the year. Real Work Life Balance measures (flexibility, WFH or remote work policy, compacted hours during summertime…)
Come join us in creating secure digital ecosystems at a global scale!