Job Closed

This listing is no longer active.

Nexthink logo
Nexthink

Unparalleled Visibility Into Issue Detection, Diagnosis, and Remediation

Senior Corporate Security Engineer

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 501-1,000Since 2011H1B No SponsorCompany SiteLinkedIn

Location

Spain

Posted

3 days ago

Salary

0

Seniority

Senior

English

Job Description

Senior Corporate Security Engineer

Nexthink

Company Description Nexthink is the leader in digital employee experience management software. The company provides IT leaders with unprecedented insight allowing them to see, diagnose and fix issues at scale impacting employees anywhere, with any application or network, before employees notice the issue. As the first solution to allow IT to progress from reactive problem solving to proactive optimization, Nexthink enables its more than 1,300 customers to provide better digital experiences to more than 18 million employees. Dual headquartered in Lausanne, Switzerland and Boston, Massachusetts, Nexthink has 9 offices worldwide. Job Description As a Senior Corporate Security Engineer at Nexthink, you will be responsible for the security of our internal environment. You won't just be monitoring logs; you will be architecting the security fabric that enables our rapid growth. Working in close partnership with IT, business teams and, partnering with our Cloud and Application Security teams, you will secure the identity, devices, and applications used by "Nexthinkers" worldwide. You will own the security of a complex SaaS ecosystem, and lead detection and response for the corporate environment. What You Will Do Identity-Centric Security Architecture - Contribute to the design and support the implementation of passwordless authentication and Zero Trust principles. - Manage secure provisioning and lifecycle management, ensuring least-privilege access across all business systems. - Partner with HR and IT to streamline onboarding/offboarding workflows, ensuring timely access revocation and auditability. Endpoint & Infrastructure Security - Define and enforce security baselines for our diverse fleet of endpoints (Windows, macOS) and mobile devices via MDM (Intune/Jamf). - Manage and tune EDR/XDR solutions to ensure high-fidelity detection on workstations and servers (Windows, Linux, macOS). - Secure the corporate Azure footprint, ensuring proper configuration of subscriptions, networking, and resources distinct from our production product environment. - Proactively identify and mitigate security risks in our corporate environment, conducting regular security assessments and vulnerability scans. - Coordinate vulnerability management and patch management - Collaborate with IT to automate endpoint compliance checks and remediation workflows. Security Engineering - Support the development and maintenance of Infrastructure-as-Code. - Ensure hardening and compliance of endpoints and servers. SaaS Security & Integration - Assess and secure third-party SaaS integrations (e.g., Salesforce apps, browser extensions, productivity tools) to prevent data leakage and over-privileged access. - Collaborate with Legal and Compliance to vet new vendors and tools. - Configure and maintain CASB and DLP policies to safeguard sensitive corporate data without hindering productivity. Detection, Response & Automation - Lead incident response activities for corporate security events (phishing, malware, lost devices). - Develop automation scripts (Python/PowerShell) and workflows (SOAR) to automate manual security tasks, evidence collection, and response actions. - Proactively hunt for threats within the corporate network and identity providers. - Develop incident response playbooks including technology specific procedures and forensics collection Audits and Compliance - Design and implement security controls to safeguard corporate resources, including endpoints, data storage, networking, computing and identity and access management. - Support and automate evidence collection for audits. Culture & Collaboration - Act as the primary security liaison to the IT Department and business teams, helping them build security into their operations (DevSecOps for IT). - Design and deliver technical security training and awareness campaigns for engineering and business teams. Qualifications - 5-8 years of hands-on experience in Corporate Security, IT Security Engineering, or a SOC role in a cloud-first environment. - Endpoint Mastery: Experience hardening operating systems (macOS/Windows) and managing security via MDM/UEM tools. - Vulnerability management: Proven experience in helping IT and business teams patching systems and infrastructures. - Coding Skills: Proficiency in Python and Terraform for automating APIs and security workflows. - Security Ops: Proven experience with EDR tools and SIEM log analysis. - Communication: Fluent in English with the ability to explain complex risks to non-technical stakeholders. - Proven ability to influence and drive security best practices across non-security teams. - Experience with security awareness training platforms and phishing simulation tools. Bonus Points - Identity Expertise: Deep technical knowledge of Okta and Microsoft Entra ID (Authentication policy, Conditional Access, SSO, SCIM, OIDC/SAML). - Experience implementing FIDO2/WebAuthn (Passwordless). - Proficient in PowerShell. - Familiarity with compliance standards (ISO 27001/27701, SOC 2, FedRAMP) - Experience securing Cloud Infrastructure (Azure/AWS) specifically for internal/corporate workloads. Why Join Nexthink Security? - Impact: You will report directly into the CISO organization and have a tangible impact on the daily lives of employees and the safety of the company. - Opportunity to work on cutting-edge security projects, with visibility and support from executive leadership. - Technology: We use top-tier security stacks. You won't be fighting with legacy on-premise hardware; we are cloud-native. - Culture: We value "Security as an Enabler," not a blocker. You will work in a supportive, highly technical environment in our Madrid hub Additional Information We are the pioneers and trailblazers of a global IT Market Category (DEX) that is shaping the future of how the world works, giving our customers' IT Teams total digital visibility across their enterprise. Our innovative solutions integrate real-time analytics, automation, and employee feedback across all endpoints. This enables our IT teams to solve complex technical challenges, create ever more productive workplaces, and deliver happy, satisfied employees in the digital workplace. With over 1000 employees across 5 continents, Nexthink operates as One Team, connecting, collaborating and innovating to continuously grow. We call our employees 'Nexthinkers' and our commitment to diversity, inclusion, and equity is second to none. We currently have over 75 nationalities working with us, from all cultures and backgrounds, speaking many different languages. If you are looking for a change and like a nice atmosphere, lots of challenges, and having fun while working, this is a great opportunity for you! Check what we offer: - Permanent Contract and a competitive compensation package. - Amazing centrally located offices near the Bernabeu Stadium. - Private Health Insurance (Sanitas) and daily meal vouchers of 11 EUR will be entirely covered by us. - Hybrid work model balancing office and remote work, with a structured approach for new hires to foster connections and onboarding. - Flexible Hours and unlimited vacation (employees have unlimited paid time off on top of the 23 days of holidays we offer) plus 3 company-paid volunteer days. - Up to 25 EUR per month for a gym subscription. - Flexible compensation plan for childcare & public transportation. - ‍ Reimbursement of up to 50% of the cost of English & Spanish classes. - Fresh fruit, cookies, soft drinks and protein shakes at the offie. - Regular company and team events like Pizza talks, Team Building activities, Christmas parties, hosting Meetups at the office and more! - Bonuses for referring successful hires after three months of continuous employment. - We offer a relocation package to people who are coming from another country. Please note that not all the benefits listed above are available for temporary, contract, and internship roles. To ensure you have the most up-to-date information, we recommend checking with your Recruitment Partner.

Related Categories

Related Job Pages

More Security Engineer Jobs

Full TimeRemoteTeam 1,001-5,000Since 2015H1B Sponsor

• Lead and support client-facing cybersecurity consulting engagements autonomously by delivering strategic advisory services. • Provide expert-driven recommendations, applying deep cybersecurity subject-matter knowledge, conducting strong qualitative analysis, and staying current on market and industry trends. • Communicate with clarity and confidence, facilitate client meetings, present results effectively, and build trust with stakeholders. • Develop and mentor junior team members, sharing expertise, giving constructive feedback, and fostering growth across Analysts and Consultants. • Contribute to Wavestone’s growth, proactively support business development, nurturing client relationships, spotting new opportunities, and participating in marketing, content creation, and internal initiatives. • Collaborating and coordinating across different Wavestone locations to participate in the global cybersecurity practice development.

Canada

Lead Associate Principal, Security Engineering

OCC - Options Clearing Corporation

OCC, which stands for Options Clearing Corporation, provides risk management financial services with the goal of bringing greater security to financial markets.

*****THIS POSITION IS NOT ELIGIBLE FOR VISA SPONSORSHIP*****To be considered for this position, applications and resumes are accepted only through our careers site by directly applying to the posted job. We do not accept unsolicited resumes or sales solicitations from staffing agencies. Any OCC employee wishing to submit a referral must do so through their Workday account. Any resume submitted outside of an active job posting will not be considered for employment. What You'll Do: Join our dynamic Security Engineering team as a Lead Associate Principal and make a significant impact on our organization's cybersecurity posture. In this role, you'll manage privileged access systems that protect our most critical assets, implement AI-based security capabilities, and help shape our security architecture. This position offers excellent growth opportunities as you'll work with best-in-class technologies while collaborating with cross-functional teams to solve complex security challenges. If you're passionate about cybersecurity and seeking a role where your expertise directly strengthens organizational resilience, this is an ideal next step for your career. Primary Duties and Responsibilities: To perform this job successfully, an individual must be able to perform each primary duty satisfactorily. - Provide 24x7 operational support for the suite of privileged management solutions (e.g., CyberArk, Hashi, PKI), including implementing hot fixes, resolving bugs, troubleshooting issues, performing break-fixes, managing secrets lifecycle, and delivering end-user support. - Maintain robust operational integrity of privileged access management infrastructure throughout its lifecycle (e.g., patching, version control, system upgrades, alignment with OCC/Security standards, etc.). Provide organizational subject matter expert on secrets management and privileged access management architecture, establishing and enforcing security as code principles throughout the environment. - Develop and implement system enhancements to improve platform user experience and automated integrations, while designing long-term solutions to address operational issues through innovative technologies including artificial intelligence for faster detection and remediation of functional and technical problems. Supervisory Responsibilities: None Qualifications: The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions. - Advanced knowledge of application authentication and authorization systems (i.e., Active Directory, oAuth 2.0, OIDC, AWS IAM, App Role, k8s, LDAPS, Kerberos, Certificate) - Working knowledge of the cloud ecosystem and CI/CD deployments with Terraform, Ansible, and Jenkins pipelines. - Working knowledge of security architecture design and principles including confidentiality, integrity and availability. Technical Skills: - Expertise in providing operational and engineering support for one or more of the following: CyberArk, HashiCorp Vault, Active Directory Certificate Services (ADCS), HSMs, and Public Key Infrastructure (PKI). - Expertise in scripting languages and developing in one or more of the following languages GoLang, Bash, Python, PowerShell, Ansible, and/or Terraform. - Expert level knowledge of privileged access management methodologies and techniques for on-prem and Cloud implementation. Education and/or Experience: - Experience in one or more of the following disciplines: security operations, development, engineering, or architecture - Experience supporting privileged access management and access controls programs. - Professional or personal experience using AI coding agents such as OpenAI Codex, Claude Code, or Gemini CLI. Certificates or Licenses: - NA About Us The Options Clearing Corporation (OCC) is the world's largest equity derivatives clearing organization. Founded in 1973, OCC is dedicated to promoting stability and market integrity by delivering clearing and settlement services for options, futures and securities lending transactions. As a Systemically Important Financial Market Utility (SIFMU), OCC operates under the jurisdiction of the U.S. Securities and Exchange Commission (SEC), the U.S. Commodity Futures Trading Commission (CFTC), and the Board of Governors of the Federal Reserve System. OCC has more than 100 clearing members and provides central counterparty (CCP) clearing and settlement services to 19 exchanges and trading platforms. More information about OCC is available at www.theocc.com. Benefits A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include: - A hybrid work environment, up to 2 days per week of remote work - Tuition Reimbursement to support your continued education - Student Loan Repayment Assistance - Technology Stipend allowing you to use the device of your choice to connect to our network while working remotely - Generous PTO and Parental leave - 401k Employer Match - Competitive health benefits including medical, dental and vision Visit https://www.theocc.com/careers/thriving-together for more information. Compensation - The salary range listed for any given position is exclusive of fringe benefits and potential bonuses. If hired at OCC, your final base salary compensation will be determined by factors such as skills, experience and/or education. - In addition, we believe in the importance of pay equity and consider internal equity of our current team members as part of any final offer. - We typically do not hire at the maximum of the range in order to allow for future and continued salary growth. We also offer a substantial benefits package as noted on www.theocc.com/careers - All employees may be eligible for a discretionary bonus. Discretionary bonuses are based on various factors, including, but not limited to, company and individual performance and are not guaranteed. Salary Range $145,200.00 - $236,700.00 Incentive Range 8% to 15% This position is eligible for an annual discretionary incentive compensation award, for which the target range is listed above (see Incentive Range). The amount of such award, if any, will be based on various factors, including without limitation, both individual and company performance. Step 1 When you find a position you're interested in, click the 'Apply' button. Please complete the application and attach your resume. Step 2 You will receive an email notification to confirm that we've received your application. Step 3 If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location. For more information about OCC, please click here. OCC is an Equal Opportunity Employer

United States
$145.2K - $236.7K / year
SilverSky logo

Senior Consultant – CMMC, Cybersecurity Maturity Model Certification

SilverSky

The world's leading Managed Detection and Response platform for threat detection, log management, and response.

Full TimeRemoteTeam 201-500H1B No Sponsor

• Scope and conduct comprehensive assessments of customer networks and systems to identify compliance gaps and/or confirm they meet the required CMMC level requirements. • Advise clients on Microsoft GCCH and Amazon Gov cloud boundary scopes, SSP documentation and best practices. • Work with customers to design and implement security measures and controls, in line with CMMC standards, to protect sensitive data and systems from exploit. • Coordinate with various customer teams to develop and implement the action plans necessary to achieve CMMC compliance. • Clearly articulate the CMMC program to customer stakeholders at all levels to ensure understanding and adherence to cybersecurity best practices. • Assist customers with the review and update of existing security policies and procedures to align with evolving CMMC requirements and best practices in cybersecurity. • Prepare detailed reports on the status of an organization's CMMC compliance. • Keep abreast of the latest cybersecurity threats and trends, as well as updates to the CMMC framework. • Achieve utilization targets, complete projects on time and budget, and meet quality standards. • Execute project delivery, scheduling, and other coordination of internal and customer resources to conduct interviews, meetings, and presentations. • Prepare and deliver insightful, professional subject matter presentations to both customers and internal SilverSky stakeholders. • Become knowledgeable and support the continued development of SilverSky’s service offerings, marketing materials, statement of work (SOW) structure, methodologies, delivery standards, work tools, and processes. • Pursue additional education and stay current on best practices, technical skills, and tools related to the position's duties. • This position has significant interaction with internal and external stakeholders, including colleagues, customers, partners and subcontractors. This position requires a strong customer service orientation and the ability to work independently on a variety of consulting projects simultaneously. • The ideal candidate must demonstrate strong organizational abilities, effective writing skills, communications skills, and identify and manage client engagement risks and issues.

United States
Hoplite Group logo

Program Manager – Security Cooperation

Hoplite Group

Mitigating Risk Through Incisive Analysis

Full TimeRemoteTeam 11-50H1B No Sponsor

• Serve as the principal Program Manager, responsible for organizing, directing, and managing a dispersed team of Subject Matter Experts (SMEs) supporting U.S. government and partner nation capacity building efforts. • Oversee the full program lifecycle, including initiation, planning, execution, delivery, and closure of monthly activities, reporting, and ad hoc deliverables. • Provide strategic direction and ensure all program deliverables meet technical and contractual requirements. • Act as the primary point of contact for government stakeholders, subcontracting offices, and partner companies. • Collaborate with Hoplite Group’s Finance Team to support cost estimation, monitor spending, review invoices, and manage vendor portal requirements. • Track project progress using Microsoft Office Suite (Word, Excel, PowerPoint) and MS Project; provide consistent and transparent status updates to internal and external stakeholders. • Support the Recruiting Team in identifying, vetting, and submitting qualified candidates to meet emerging customer requirements. • Deliver concise weekly and monthly reports and briefings to senior Hoplite Group stakeholders and government clients. • Ensure quality, risk mitigation, and compliance with DoD and federal program standards.

United States