Job Closed
This listing is no longer active.
Unparalleled Visibility Into Issue Detection, Diagnosis, and Remediation
Senior Corporate Security Engineer
Location
Spain
Posted
46 days ago
Salary
0
Seniority
Senior
Job Description
Senior Corporate Security Engineer
Nexthink
Company Description Nexthink is the leader in digital employee experience management software. The company provides IT leaders with unprecedented insight allowing them to see, diagnose and fix issues at scale impacting employees anywhere, with any application or network, before employees notice the issue. As the first solution to allow IT to progress from reactive problem solving to proactive optimization, Nexthink enables its more than 1,300 customers to provide better digital experiences to more than 18 million employees. Dual headquartered in Lausanne, Switzerland and Boston, Massachusetts, Nexthink has 9 offices worldwide. #LI-Hybrid Job Description As a Senior Corporate Security Engineer at Nexthink, you will be responsible for the security of our internal environment. You won't just be monitoring logs; you will be architecting the security fabric that enables our rapid growth. Working in close partnership with IT, business teams and, partnering with our Cloud and Application Security teams, you will secure the identity, devices, and applications used by "Nexthinkers" worldwide. You will own the security of a complex SaaS ecosystem, and lead detection and response for the corporate environment. What You Will Do Identity-Centric Security Architecture - Contribute to the design and support the implementation of passwordless authentication and Zero Trust principles. - Manage secure provisioning and lifecycle management, ensuring least-privilege access across all business systems. - Partner with HR and IT to streamline onboarding/offboarding workflows, ensuring timely access revocation and auditability. Endpoint & Infrastructure Security - Define and enforce security baselines for our diverse fleet of endpoints (Windows, macOS) and mobile devices via MDM (Intune/Jamf). - Manage and tune EDR/XDR solutions to ensure high-fidelity detection on workstations and servers (Windows, Linux, macOS). - Secure the corporate Azure footprint, ensuring proper configuration of subscriptions, networking, and resources distinct from our production product environment. - Proactively identify and mitigate security risks in our corporate environment, conducting regular security assessments and vulnerability scans. - Coordinate vulnerability management and patch management - Collaborate with IT to automate endpoint compliance checks and remediation workflows. Security Engineering - Support the development and maintenance of Infrastructure-as-Code. - Ensure hardening and compliance of endpoints and servers. SaaS Security & Integration - Assess and secure third-party SaaS integrations (e.g., Salesforce apps, browser extensions, productivity tools) to prevent data leakage and over-privileged access. - Collaborate with Legal and Compliance to vet new vendors and tools. - Configure and maintain CASB and DLP policies to safeguard sensitive corporate data without hindering productivity. Detection, Response & Automation - Lead incident response activities for corporate security events (phishing, malware, lost devices). - Develop automation scripts (Python/PowerShell) and workflows (SOAR) to automate manual security tasks, evidence collection, and response actions. - Proactively hunt for threats within the corporate network and identity providers. - Develop incident response playbooks including technology specific procedures and forensics collection Audits and Compliance - Design and implement security controls to safeguard corporate resources, including endpoints, data storage, networking, computing and identity and access management. - Support and automate evidence collection for audits. Culture & Collaboration - Act as the primary security liaison to the IT Department and business teams, helping them build security into their operations (DevSecOps for IT). - Design and deliver technical security training and awareness campaigns for engineering and business teams. Qualifications - 5-8 years of hands-on experience in Corporate Security, IT Security Engineering, or a SOC role in a cloud-first environment. - Endpoint Mastery: Experience hardening operating systems (macOS/Windows) and managing security via MDM/UEM tools. - Vulnerability management: Proven experience in helping IT and business teams patching systems and infrastructures. - Coding Skills: Proficiency in Python and Terraform for automating APIs and security workflows. - Security Ops: Proven experience with EDR tools and SIEM log analysis. - Communication: Fluent in English with the ability to explain complex risks to non-technical stakeholders. - Proven ability to influence and drive security best practices across non-security teams. - Experience with security awareness training platforms and phishing simulation tools. Bonus Points - Identity Expertise: Deep technical knowledge of Okta and Microsoft Entra ID (Authentication policy, Conditional Access, SSO, SCIM, OIDC/SAML). - Experience implementing FIDO2/WebAuthn (Passwordless). - Proficient in PowerShell. - Familiarity with compliance standards (ISO 27001/27701, SOC 2, FedRAMP) - Experience securing Cloud Infrastructure (Azure/AWS) specifically for internal/corporate workloads. Why Join Nexthink Security? - Impact: You will report directly into the CISO organization and have a tangible impact on the daily lives of employees and the safety of the company. - Opportunity to work on cutting-edge security projects, with visibility and support from executive leadership. - Technology: We use top-tier security stacks. You won't be fighting with legacy on-premise hardware; we are cloud-native. - Culture: We value "Security as an Enabler," not a blocker. You will work in a supportive, highly technical environment in our Madrid hub Additional Information We are the pioneers and trailblazers of a global IT Market Category (DEX) that is shaping the future of how the world works, giving our customers' IT Teams total digital visibility across their enterprise. Our innovative solutions integrate real-time analytics, automation, and employee feedback across all endpoints. This enables our IT teams to solve complex technical challenges, create ever more productive workplaces, and deliver happy, satisfied employees in the digital workplace. With over 1000 employees across 5 continents, Nexthink operates as One Team, connecting, collaborating and innovating to continuously grow. We call our employees 'Nexthinkers' and our commitment to diversity, inclusion, and equity is second to none. We currently have over 75 nationalities working with us, from all cultures and backgrounds, speaking many different languages. If you are looking for a change and like a nice atmosphere, lots of challenges, and having fun while working, this is a great opportunity for you! Check what we offer: - Permanent Contract and a competitive compensation package. - Amazing centrally located offices near the Bernabeu Stadium. - Private Health Insurance (Sanitas) and daily meal vouchers of 11 EUR will be entirely covered by us. - Hybrid work model balancing office and remote work, with a structured approach for new hires to foster connections and onboarding. - Flexible Hours and unlimited vacation (employees have unlimited paid time off on top of the 23 days of holidays we offer) plus 3 company-paid volunteer days. - Up to 25 EUR per month for a gym subscription. - Flexible compensation plan for childcare & public transportation. - Reimbursement of up to 50% of the cost of English & Spanish classes. - Fresh fruit, cookies, soft drinks and protein shakes at the offie. - Regular company and team events like Pizza talks, Team Building activities, Christmas parties, hosting Meetups at the office and more! - Bonuses for referring successful hires after three months of continuous employment. - We offer a relocation package to people who are coming from another country. Please note that not all the benefits listed above are available for temporary, contract, and internship roles. To ensure you have the most up-to-date information, we recommend checking with your Recruitment Partner.
Benefits
- 401(K), 401(K) matching, Adoption Assistance, Childcare benefits, Commuter benefits, Company-sponsored outings, Company sponsored family events, Continuing education stipend, Customized development tracks, Dedicated diversity and inclusion staff, Dental insurance, Disability insurance, Diversity manifesto, Documented equal pay policy, Volunteer in local community, Family medical leave, Flexible Spending Account (FSA), Flexible work schedule, Generous parental leave, Generous PTO, Company-sponsored happy hours, Health insurance, Highly diverse management team, Job training & conferences, Open door policy, Life insurance, Charitable contribution matching, Mean gender pay gap below 10%, Mentorship program, Paid volunteer time, Online course subscriptions available, Onsite gym, Open office floor plan, Paid holidays, Paid industry certifications, Pair programming, Paid sick days, Partners with nonprofits, Performance bonus, Pet insurance, Promote from within, Lunch and learns, Relocation assistance, Remote work program, Return-to-work program post parental leave, Free snacks and drinks, Team based strategic planning, OKR operational model, Team workouts, Continuing education available during work hours, Tuition reimbursement, Mandated unconscious bias training, Unlimited vacation policy, Vision insurance, Wellness programs, Some meals provided, Mental health benefits, Home-office stipend for remote employees, Diversity employee resource groups, Hiring practices that promote diversity, Employee resource groups, Employee-led culture committees, Hybrid work model, In-person all-hands meetings, In-person revenue kickoff, President's club, Employee awards, Diversity recruitment program, Pay transparency, Meditation space, Mother's room, Personal development training, Virtual coaching services, Flexible time off, Bereavement leave benefits
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Cyber Security Engineer
ClarivateHeadquartered in Philadelphia, Pennsylvania, Clarivate offers a patent search and analytics platform to help users worldwide discover, protect, and commercialize their ideas more q
Cyber Security Engineer Location: Kansas City, MO, USA Full-time Hybrid Job Description: We are looking for a Cyber Security Engineer to join our growing Cyber Defense team in our Overland Park, KS office. This is an incredible opportunity to work across a wide range of cybersecurity tools and technologies while helping strengthen and shape our global security posture. Our team is expanding, building, and solving challenging problems every day—making this role ideal for someone who thrives in a dynamic, fast‑evolving environment. About You – Experience, Education, skills, and accomplishments - Bachelor’s degree in computer science, information technology, cybersecurity, or equivalent, relevant work experience - 5+ years of experience in a cybersecurity role within enterprise and/or cloud environments. It would be great if you also have… - Specialized cybersecurity certifications. - Experience designing, implementing, and supporting information security solutions. - Hands-on experience with incident response, alert handling, and SOC‑driven workflows (Blue Team focus). - Experience with DevSecOps and developing automations/integrations - Prior work consolidating tools into a unified platform and generating/triaging tickets. - Exposure to multi-cloud security environments. What will you be doing in this role? In this role, you will help design, build, and operationalize cybersecurity capabilities across the organization. Your work will include: - Defining security requirements and implementing capabilities aligned with the company’s information security strategy. - Conducting proof of value (POV) efforts for new cybersecurity tools and driving operational readiness. - Analyzing IT projects and roadmaps to identify security dependencies, gaps, and risks. - Maintain the integrity and accuracy of consolidated vulnerability data within the central platform. - Assist in tuning scanning tools, adjusting detection policies, and improving asset coverage. - Contribute to continuous improvement of the vulnerability management lifecycle and supporting processes. - Designing mitigating controls to address emerging threats and vulnerabilities. - Providing security advisory services and recommending improvements based on industry best practices. - Responding to security incidents and escalations from our SOC. - Participating in Blue and Red Team exercises to strengthen internal security readiness. About the Team You’ll join a growing, highly skilled cybersecurity engineering team with deep expertise across cloud security, threat detection, and enterprise‑grade security operations. The team’s culture emphasizes: - Continuous learning and knowledge sharing - Hands-on ownership - Collaboration with cross-functional security, IT, and infrastructure teams - Building scalable, resilient, and modern security capabilities This role supports internal stakeholders across the enterprise, ensuring security is embedded into projects, roadmaps, and operational workflows. Hours of Work This is a full-time, Monday–Friday position. Hybrid schedule – working onsite in Kansas City up to 3 days per week. At Clarivate, we are committed to providing equal employment opportunities for all qualified persons with respect to hiring, compensation, promotion, training, and other terms, conditions, and privileges of employment. We comply with applicable laws and regulations governing non-discrimination in all locations.
Regional Retread Service Technician
The Goodyear Tire & Rubber CompanyGoodyear is one of the world's largest tire companies. It employs about 72,000 people and manufactures its products in 57 facilities in 23 countries around the world. Its two Innovation Centers in Akron, Ohio, and Colmar-Berg, Luxembourg, strive to develop state-of-the-art products and services that set the technology and performance standard for the industry.
The Regional Retread Service Technician provides technical service and quality assurance across assigned Goodyear retread locations to ensure consistent, high-quality production. This role supports both company-owned and authorized plants through root cause analysis, equipment maintenance, and continuous process improvements. Serving as the primary point of contact for manufacturing concerns, the technician delivers hands-on technical support and training in production systems and business management practices. Why This Role Matters - Drives consistent, high‑quality retread production across the Goodyear retread network. - Improves plant performance through root cause analysis, process optimization, and equipment support. - Acts as the key technical and communication link between Goodyear and retread locations. What You Will Do - Plan and deliver equipment installation expertise, preventive maintenance support, and manufacturing audits across assigned retread locations. - Provide hands-on technical support, root cause analysis, and field training to ensure consistent, high-quality, like-new retread products. - Serve as the primary point of contact for retreaders, communicating Goodyear standards, new equipment, and manufacturing procedures. - Drive continuous improvement by challenging plants to enhance key production indicators, quality performance, and cost competitiveness. - Support manufacturing process optimization through equipment, layout improvements, and lean manufacturing practices. What We’re Looking For - Bachelor’s degree or equivalent experience, including 10+ years in retread plant management, training, or tire technology. - 5+ years of experience in a retread or tire manufacturing environment, with hands-on exposure to plant operations and systems. - Background in industrial or mechanical engineering, or equipment maintenance within a manufacturing setting. - Proven process improvement experience, supported by strong communication skills, mechanical aptitude, and proficiency in Microsoft Office/SPC tools. Additional Details - Traveling Requirement: Yes - 70% - Relocation Approval: Yes - Sponsorship: No #ManufacturingCareers #TechnicalSupport #RetreadIndustry #ContinuousImprovement #QualityAssurance #FieldService #LI-JT1 Goodyear offers a competitive pay and comprehensive total rewards package designed with your physical, financial, and emotional wellbeing in mind. The pay range for this position is $91,869.00 - $170,615.00 However, base pay offered may vary depending on factors such-as job-related knowledge, skills, experience, and market location. You will also be eligible for a number of benefits, including medical, prescription, dental, vision, 401(k), life insurance, disability, tuition assistance, sick and vacation time, as well as tire discounts. You will receive more information on our Total Rewards if selected to interview. Goodyear is one of the world's largest tire companies. It employs about 68,000 people and manufactures its products in 51 facilities in 19 countries around the world. Its two Innovation Centers in Akron, Ohio, and Colmar-Berg, Luxembourg, strive to develop state-of-the-art products and services that set the technology and performance standard for the industry. For more information about Goodyear and its products, go to Goodyear.com. If you need reasonable accommodation to complete the online application, or any other part of the employment process, please contact the Goodyear Candidate Care Line at 330.796.4500. Goodyear is an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to any characteristic protected by law.
• Design, implement, and manage secure AWS cloud architectures, including networking, IAM, and service configurations. • Develop and enforce cloud security standards, policies, and guardrails across AWS environments. • Implement automated security controls using tools like Terraform, AWS Config, Security Hub, GuardDuty, and Inspector. • Collaborate with DevOps and engineering teams to integrate security into CI/CD pipelines (DevSecOps). • Monitor and respond to security events using SIEM and cloud-native logging tools (CloudWatch, CloudTrail, AWS Security Hub, etc.). • Conduct threat modeling, risk assessments, and security architecture reviews for AWS-based applications and services. • Maintain and optimize identity and access management across AWS accounts using IAM, SSO, SCPs, and Organizations. • Manage data protection strategies, including encryption (KMS), DLP, and secure key management. • Support compliance initiatives (e.g., SOC 2, HIPAA, ISO 27001, or FedRAMP) with evidence collection and policy implementation.
Senior Security Engineer
ICFFounded in 1969, ICF is a global advisory and technology services company headquartered in Reston, Virginia. It delivers data-driven solutions across energy, environment, infrastru
Role Description ICF is looking for an enthusiastic Senior Security Engineer to join our team and help with ensuring our environments and applications meet Federal Security Standards. If you are a Security Engineer interested in applying your expertise in Security Engineering in a consulting environment, then this may be the role for you. This position requires that the job be performed in the United States. If you accept this position, you should note that ICF does monitor employee work locations and blocks access from foreign locations/foreign IP addresses, and also prohibits personal VPN connections. Our core work hours are 10am - 4pm Eastern Time with the option to start earlier or work later depending on your time zone. However, please note our client is on the east coast and may sometimes start a meeting earlier than 10:00 which may require your participation. Travel for a conference or to another ICF location for collaboration may be required once a year. What You Will Do: - Work on multiple products and develop and present secure solutions and advice to technical teams and leadership. - Assess risks and advise on security standards, best practices, and solutions. - Maintain security quality and customer satisfaction. - Document vulnerabilities and work with developers to correct them. - Ensure all documentation and appropriate steps are taken and approved for highly secure production applications and environments. Responsibilities: - Perform Static Application Security Testing (SAST) to identify potential vulnerabilities in the application code and infrastructure. - Perform Dynamic Application Security Testing (DAST). - Create and update threat models for FISMA systems. - Assist and lead security incident response. - Assist with documentation of System Security plan and Contingency Plans for related projects. - Ensure security systems are up to date and create documentation and planning for all security-related information, including incident response and disaster recovery plans. - Review policies and procedures for compliance with applicable standards; identify areas of improvement for finding remediation. - Interact with senior level management, including the ISSO. - Use security assessment tools such as Nessus, Snyk, AWS GuardDuty, and AWS Inspector. - Apply a demonstrated understanding of cryptography to secure web applications and data at rest. - Work with development teams to review and correct code written in higher level programming languages and scripts. - Work with DevOps teams to securely harden Linux based machines and cloud infrastructure. Qualifications - Bachelor’s Degree. - 5+ years of professional security engineering experience. - Candidate must be able to obtain and maintain a Public Trust. - Candidate must reside in the U.S., be authorized to work in the U.S., and all work must be performed in the U.S. - Candidate must have lived in the U.S. for three (3) full years out of the last five (5) years. Requirements - Hands-on experience that includes: - NIST 800‑53 security controls. - System hardening and implementation of DoD STIGs. - Leading incident response activities. - Data management and applied cryptography. - Cloud security and infrastructure (AWS, Azure, and/or GCP). - Awareness of OWASP Top Ten and CWE Top 25. - Linux command line usage (e.g., bash, sh, zsh). - Scripting in Python, Perl, or similar languages. - Prior experience in consulting or healthcare is an advantage but not essential. - Strong engineering background. - Application architecture experience. - Federal Government contracting work experience. - One or more of the following certifications is preferred: - OSCP/OSCE/OWSE. - CISSP. - GPEN. - GXPN. - Security +. - CEH. Benefits - Good leadership and team-working skills. - Highly effective analytical, problem-solving, and decision-making capabilities. - Excellent communication and interpersonal skills to interface effectively at all levels of the business. - Organized, detailed oriented and able to prioritize and multi-task. - Ability to self-organize, prioritize and conduct work on multiple projects under tight deadlines in a fast-paced environment. - Prior experience working remotely full-time. Company Description ICF is a global advisory and technology services provider, but we’re not your typical consultants. We combine unmatched expertise with cutting-edge technology to help clients solve their most complex challenges, navigate change, and shape the future. We can only solve the world's toughest challenges by building a workplace that allows everyone to thrive. We are an equal opportunity employer. Together, our employees are empowered to share their expertise and collaborate with others to achieve personal and professional goals. For more information, please read our EEO policy.
