Role Description En Indramind Cybersecurity, sabemos que el talento es la clave para impulsar el cambio y construir un futuro digital más seguro. Si estás listo para enfrentarte a nuevos desafíos, crecer profesionalmente y aportar tu experiencia a proyectos que realmente marcan la diferencia, este es el lugar para ti. Lideramos el desarrollo de soluciones tecnológicas punteras que refuerzan la seguridad nacional e internacional. ¡Únete a nuestro equipo como Responsable de Torre de Ciberseguridad! Queremos reforzar nuestro equipo con un/a Responsable de Torre de Ciberseguridad con experiencia en PAM, IGA y PKI y forma parte de una transformación constante, donde tu impacto será fundamental en un entorno innovador y en evolución. ¿Qué harás? - Coordinar el Departamento de Identidades PAM e IGA - Dar apoyo técnico al equipo y al Departamento - Gestión de ticketing, proyecto e interacción con otros departamentos. ¿Qué buscamos en ti? - Grado en Ingeniería, Informática, Telecomunicaciones, GS en DAM, ASIR… - Experiencia con herramientas PAM tipo: Cyberark-Conjur, Secrets Manager, Manager enterprise, Microsoft AD… - Experiencia con herramientas IGA: Sailpoint, Microsoft EntraID, Microsoft Defender ID… - Conocimiento de PKI; Digicert, Entrust, Hashicorp… - Nivel alto de Inglés (B2 mínimo) Benefits - Estabilidad y Futuro: Proyectos a largo plazo en una empresa líder con más de 50.000 profesionales, con seguridad financiera. - Proyectos Innovadores y de Alto Alcance: Trabajarás con tecnologías de vanguardia, con un impacto tanto a nivel nacional como internacional. - Ambiente Cercano y Transparente: Disfrutarás de una comunicación directa y fluida con responsables y compañeros, en un entorno colaborativo y abierto. - Autonomía y Flexibilidad: Tendrás libertad para organizar tu trabajo, con una conciliación real y adaptada a tu ritmo. - Plan de carrera adaptado a ti: Diseñado para impulsar tu crecimiento y desarrollo profesional. - Formación continua: en Open University y Udemy for Business (¡más de 6.000 cursos para especializarte!). - Descuentos exclusivos para tu bienestar: Disfruta de ventajas en gimnasios, restaurantes, tiendas, ocio y mucho más al ser empleado de Indra. - Retribución competitiva y planes de compensación flexibles a tus necesidades. Selection Process - Revisión de tu perfil: Evaluamos tu experiencia y habilidades para determinar si encajas con lo que buscamos. - Primera toma de contacto (5-10 min): Si recibes una llamada de un número desconocido, ¡es nuestro equipo! Será una conversación rápida para conocerte y resolver cualquier duda. - Entrevista técnica: Te reunirás con el equipo, quienes te explicarán el proyecto y las tareas diarias. También exploraremos tus conocimientos técnicos. Además, te realizaremos breves pruebas de competencias psicológicas e inglés (si es necesario). - Oferta y bienvenida: Si todo va bien, ¡te incorporas a nuestro equipo y comenzamos esta nueva etapa juntos! Tiempo Estimado: 1-2 semanas. Company Description Indramind Cybersecurity, Beyond diversity. Nuestro compromiso es promover ambientes de trabajo en los que se trate con respeto y dignidad a las personas, procurando el desarrollo profesional de la plantilla y garantizando la igualdad de oportunidades en su selección, formación y promoción ofreciendo un entorno de trabajo libre de cualquier discriminación por motivo de género, edad, discapacidad, orientación sexual, identidad o expresión de género, religión, etnia, estado civil o cualquier otra circunstancia personal o social. ¡INDRA es empresa Top Employer 2025! Incorpórate a una empresa certificada como una de las mejores empresas empleadoras de España, gracias a nuestra gestión integral de RRHH y a las condiciones para nuestros profesionales.

• Lead global physical security and investigative operations across corporate and production environments. • Develop facility security and forensic response programs. • Direct internal investigations and coordinate with Legal on litigation support and regulatory matters. • Ensure proper preservation of physical and digital evidence in partnership with Information Security teams. • Implement executive protection and travel security programs. • Oversee emergency preparedness and crisis response initiatives. • Conduct risk assessments and implement mitigation strategies globally. • Build trusted relationships with law enforcement and investigative partners. • Provide executive-level reporting on security posture and investigative outcomes. • Lead and develop a high-performing physical security and investigative team.

This is a remote position. Security Engineer Overview We are seeking a Security Engineer to design, implement, and maintain security controls across cloud environments, data platforms, and AI-driven applications. This role will focus on protecting systems built on AWS, Azure, Tableau, Power BI, and DealCloud CRM, ensuring the confidentiality, integrity, and availability of data and applications. This is a hands-on technical role ideal for someone with strong cloud and application security experience, with exposure to modern data and AI environments. Key Responsibilities - Design and implement security controls across cloud environments (AWS, Azure) - Secure applications, APIs, and data pipelines supporting AI and analytics platforms - Implement and manage identity and access management (IAM) and role-based access controls - Conduct vulnerability assessments, penetration testing coordination, and risk analysis - Monitor systems using SIEM and security tools to detect and respond to threats - Ensure secure data handling, encryption, and data governance practices - Support integration security for BI tools (Tableau, Power BI) and CRM platforms (DealCloud) - Collaborate with DevOps and engineering teams to embed security into CI/CD pipelines (DevSecOps) - Respond to and support remediation of security incidents and vulnerabilities - Maintain and enforce security policies, standards, and compliance requirements Requirements Required Qualifications - 4–7 years of experience in Cybersecurity, Security Engineering, or Cloud Security roles - Hands-on experience securing AWS and/or Azure environments - Strong understanding of network security, application security, and cloud security principles - Experience with IAM, access control, and authentication mechanisms - Experience with security tools (e.g., SIEM, vulnerability scanners, endpoint protection) - Knowledge of encryption, data protection, and secure coding practices - Experience with API security and microservices architectures - Strong problem-solving and analytical skills Key Traits for Success - Strong security-first mindset with attention to detail - Ability to identify and mitigate risks proactively - Collaborative approach with engineering and data teams - Adaptability in a fast-evolving, AI-driven environment - Strong communication skills across technical and non-technical audiences

As a Vector Command Specialist, you will work with a team of offensive security consultants to help clients improve their security posture through your technical skills and knowledge of attack surface management strategies. You will serve as a technical analyst and customer liaison. You will also work with various Managed Services teams to help deliver monthly reports to customers, address customer needs, and assist with other security consultant deliverables. About the Team Vector Command is an always-on Red Team operation supporting multiple customers. As part of a specialized team, you will emulate real adversaries by performing large-scale reconnaissance, identifying exposed or high-value assets, and discovering weaknesses that can be leveraged for compromise. After gaining access, the team continues with post-compromise objectives to demonstrate real impact, evade detection, and assess the effectiveness of security controls. This service evaluates far more than vulnerabilities-it tests the customer's entire security posture and defense-in-depth strategy. In addition to offensive operations, you will support customers through external attack surface analysis, exposure reconnaissance, integration of accounts and tools, preparation of monthly Red Team reports, and prioritization of customer requests. Daily collaboration with Vector Command operators is essential, as is maintaining awareness of new vulnerabilities, shifts in customer attack surfaces, and changes across customer environments. About the Role Your primary responsibility will be to support Vector Command customers by conducting external attack surface analysis, exposure reconnaissance, account and tool integrations, preparing monthly red team report deliverables, and prioritizing customer requests. You will work daily with Rapid7's Vector Command Red Team operators, assisting with ongoing red team exercises and staying up to date on the latest vulnerabilities, customer attack surface changes, and exposures within customer environments. Specifically, your focus will be to: - Onboard customers to the Vector Command platform and technologies. - Oversee and ensure the completeness of customer report deliverables. - Serve as the primary point of contact for customer inquiries related to testing operations, alerts, or general Vector Command questions associated with Red Team activities. - Coordinate and host monthly Vector Command Red Team update calls in conjunction with a Rapid7 Red Team lead. - Translate technical concepts and communicate them effectively to non-security personnel. - Coordinate communications between internal Rapid7 services on behalf of customers, including the Managed Detection and Response (MDR) and Managed Vulnerability Management (MVM) teams. - Provide monthly written summaries of each customer's attack surface and Vector Command Red Team operations. - Analyze each customer's exposures and attack surface within the Vector Command platform. - Conduct manual network and service reconnaissance to identify new exposures. - Perform Open-Source Intelligence (OSINT) gathering on customers to identify attack surface elements that extend beyond traditional network services. - Keep the Red Team informed of significant changes in customers' attack surfaces. - Coordinate customer requests and prioritizations with the Red Team operators. - Develop scripts to query and analyze attack surface data from numerous sources and automated systems. - Perform entry level penetration testing activities against external assets, as assigned by the Red Team lead. The skills and qualities you'll bring include: - 3+ years in an active technical security role. - Knowledge of modern penetration testing tools and methods. - Knowledge of external attack surface reconnaissance techniques to identify customer's internet facing exposures. - Strong knowledge of network, web-based application, and IEEE 802.11 security concepts. - Knowledge of Windows/Linux/UNIX internals and the Internet protocol suite. - Experience using scripting languages such as Python and PowerShell - Experience with social engineering techniques and tactics related to reconnaissance and OSINT gathering. - Certifications such as CREST, GPEN, PJPT, PNPT, CPTS, or OSCP are preferred. - Excellent written and verbal communication skills. - Collaborative mindset, contributing to knowledge sharing and cross training - Demonstrates a strong sense of ownership and commitment to the "end-to-end" testing process. Holds themselves and other accountable to driving value and customer outcomes from the initial pre-engagement planning to the final remediation phase - Core Value Embodiment: Embody our core values to foster a culture of excellence that drives meaningful impact and collective success. We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today. #LI-PB1 #LI-Remote About Rapid7 At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what's possible and drive extraordinary impact. We're building a dynamic and collaborative workplace where new ideas are welcome. Protecting 11,000+ customers against bad actors and threats means we're continuing to push the envelope just like we' ve been doing for the past 20 years. If you 're ready to solve some of the toughest challenges in cybersecurity, we're ready to help you take command of your career. Join us.