Nexthink logo
Nexthink

Unparalleled Visibility Into Issue Detection, Diagnosis, and Remediation

Senior Corporate Security Engineer

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 501-1,000Since 2011H1B No SponsorCompany SiteLinkedIn

Location

Spain

Posted

19 hours ago

Salary

0

Seniority

Senior

English

Job Description

Senior Corporate Security Engineer

Nexthink

Company Description Nexthink is the leader in digital employee experience management software. The company provides IT leaders with unprecedented insight allowing them to see, diagnose and fix issues at scale impacting employees anywhere, with any application or network, before employees notice the issue. As the first solution to allow IT to progress from reactive problem solving to proactive optimization, Nexthink enables its more than 1,300 customers to provide better digital experiences to more than 18 million employees. Dual headquartered in Lausanne, Switzerland and Boston, Massachusetts, Nexthink has 9 offices worldwide. Job Description As a Senior Corporate Security Engineer at Nexthink, you will be responsible for the security of our internal environment. You won't just be monitoring logs; you will be architecting the security fabric that enables our rapid growth. Working in close partnership with IT, business teams and, partnering with our Cloud and Application Security teams, you will secure the identity, devices, and applications used by "Nexthinkers" worldwide. You will own the security of a complex SaaS ecosystem, and lead detection and response for the corporate environment. What You Will Do Identity-Centric Security Architecture - Contribute to the design and support the implementation of passwordless authentication and Zero Trust principles. - Manage secure provisioning and lifecycle management, ensuring least-privilege access across all business systems. - Partner with HR and IT to streamline onboarding/offboarding workflows, ensuring timely access revocation and auditability. Endpoint & Infrastructure Security - Define and enforce security baselines for our diverse fleet of endpoints (Windows, macOS) and mobile devices via MDM (Intune/Jamf). - Manage and tune EDR/XDR solutions to ensure high-fidelity detection on workstations and servers (Windows, Linux, macOS). - Secure the corporate Azure footprint, ensuring proper configuration of subscriptions, networking, and resources distinct from our production product environment. - Proactively identify and mitigate security risks in our corporate environment, conducting regular security assessments and vulnerability scans. - Coordinate vulnerability management and patch management - Collaborate with IT to automate endpoint compliance checks and remediation workflows. Security Engineering - Support the development and maintenance of Infrastructure-as-Code. - Ensure hardening and compliance of endpoints and servers. SaaS Security & Integration - Assess and secure third-party SaaS integrations (e.g., Salesforce apps, browser extensions, productivity tools) to prevent data leakage and over-privileged access. - Collaborate with Legal and Compliance to vet new vendors and tools. - Configure and maintain CASB and DLP policies to safeguard sensitive corporate data without hindering productivity. Detection, Response & Automation - Lead incident response activities for corporate security events (phishing, malware, lost devices). - Develop automation scripts (Python/PowerShell) and workflows (SOAR) to automate manual security tasks, evidence collection, and response actions. - Proactively hunt for threats within the corporate network and identity providers. - Develop incident response playbooks including technology specific procedures and forensics collection Audits and Compliance - Design and implement security controls to safeguard corporate resources, including endpoints, data storage, networking, computing and identity and access management. - Support and automate evidence collection for audits. Culture & Collaboration - Act as the primary security liaison to the IT Department and business teams, helping them build security into their operations (DevSecOps for IT). - Design and deliver technical security training and awareness campaigns for engineering and business teams. Qualifications - 5-8 years of hands-on experience in Corporate Security, IT Security Engineering, or a SOC role in a cloud-first environment. - Endpoint Mastery: Experience hardening operating systems (macOS/Windows) and managing security via MDM/UEM tools. - Vulnerability management: Proven experience in helping IT and business teams patching systems and infrastructures. - Coding Skills: Proficiency in Python and Terraform for automating APIs and security workflows. - Security Ops: Proven experience with EDR tools and SIEM log analysis. - Communication: Fluent in English with the ability to explain complex risks to non-technical stakeholders. - Proven ability to influence and drive security best practices across non-security teams. - Experience with security awareness training platforms and phishing simulation tools. Bonus Points - Identity Expertise: Deep technical knowledge of Okta and Microsoft Entra ID (Authentication policy, Conditional Access, SSO, SCIM, OIDC/SAML). - Experience implementing FIDO2/WebAuthn (Passwordless). - Proficient in PowerShell. - Familiarity with compliance standards (ISO 27001/27701, SOC 2, FedRAMP) - Experience securing Cloud Infrastructure (Azure/AWS) specifically for internal/corporate workloads. Why Join Nexthink Security? - Impact: You will report directly into the CISO organization and have a tangible impact on the daily lives of employees and the safety of the company. - Opportunity to work on cutting-edge security projects, with visibility and support from executive leadership. - Technology: We use top-tier security stacks. You won't be fighting with legacy on-premise hardware; we are cloud-native. - Culture: We value "Security as an Enabler," not a blocker. You will work in a supportive, highly technical environment in our Madrid hub Additional Information We are the pioneers and trailblazers of a global IT Market Category (DEX) that is shaping the future of how the world works, giving our customers' IT Teams total digital visibility across their enterprise. Our innovative solutions integrate real-time analytics, automation, and employee feedback across all endpoints. This enables our IT teams to solve complex technical challenges, create ever more productive workplaces, and deliver happy, satisfied employees in the digital workplace. With over 1000 employees across 5 continents, Nexthink operates as One Team, connecting, collaborating and innovating to continuously grow. We call our employees 'Nexthinkers' and our commitment to diversity, inclusion, and equity is second to none. We currently have over 75 nationalities working with us, from all cultures and backgrounds, speaking many different languages. If you are looking for a change and like a nice atmosphere, lots of challenges, and having fun while working, this is a great opportunity for you! Check what we offer: - Permanent Contract and a competitive compensation package. - Amazing centrally located offices near the Bernabeu Stadium. - Private Health Insurance (Sanitas) and daily meal vouchers of 11 EUR will be entirely covered by us. - Hybrid work model balancing office and remote work, with a structured approach for new hires to foster connections and onboarding. - Flexible Hours and unlimited vacation (employees have unlimited paid time off on top of the 23 days of holidays we offer) plus 3 company-paid volunteer days. - Up to 25 EUR per month for a gym subscription. - Flexible compensation plan for childcare & public transportation. - ‍ Reimbursement of up to 50% of the cost of English & Spanish classes. - Fresh fruit, cookies, soft drinks and protein shakes at the offie. - Regular company and team events like Pizza talks, Team Building activities, Christmas parties, hosting Meetups at the office and more! - Bonuses for referring successful hires after three months of continuous employment. - We offer a relocation package to people who are coming from another country. Please note that not all the benefits listed above are available for temporary, contract, and internship roles. To ensure you have the most up-to-date information, we recommend checking with your Recruitment Partner. The base salary for this is €72,000 - €100,000 gross per year, with a total on-target earnings (OTE) range of €79,000 - €110,000 including an annual performance bonus. You'll also be part of our broader total rewards package - including benefits tailored to where you live and how you work best. We set our pay ranges using objective criteria: the scope and level of the role, the skills it takes to do it well, and the relevant market data. Ranges are reviewed every year to remain competitive and fair. We're transparent about this because we think you deserve to know what you're working towards from day one. In accordance with the EU Pay Transparency Directive (2023/970), we publish salary ranges on every Nexthink role. We won't ask what you currently earn or your previous salary. What matters to us is what this role is worth and whether it works for you. Nexthinkers come from all kinds of backgrounds, and that's what makes us stronger. We welcome applications from everyone.

Related Categories

Related Job Pages

More Security Engineer Jobs

Full TimeRemoteTeam 10,001+Since 1935H1B Sponsor

Role Description The Microsoft Security Lead will own and develop Arrow’s Microsoft Security strategy, working closely with Partner Development Managers, Microsoft, and other internal and external stakeholders. This role is responsible for driving security reseller activation, enablement, and programme execution across Microsoft security. Reporting into Head of Alliances – Cloud, the Microsoft Security Lead will build strong vendor and partner relationships, enabling channel partners to successfully position and sell Microsoft Security solutions. You will help to enable the execution of Security motions that drive new customer and workload acquisition within new partner prospects and current Arrow resellers. The role blends strategic vendor management with hands-on execution — including running Microsoft cadence meetings, collaborating with Arrow’s global Microsoft security team, managing a dedicated marketing budget, supporting partner readiness, and ensuring strong alignment to Microsoft Security priorities and FY success metrics. Key Responsibilities - Act as Arrow’s Security solution lead, owning the execution of Microsoft Security plays in line with Microsoft KPIs and frameworks. - An active involvement in developing the relationship with Microsoft Security stakeholders, including participation in regular cadence calls, planning sessions, QBRs, and joint execution reviews. - Drive new customer and workload acquisition for Microsoft Security through indirect channel partners. - Enable reseller partners to position and sell Microsoft Security solutions through structured plays, campaigns, and targeted GTM motions. - Own and manage a dedicated marketing budget, delivering Microsoft-aligned campaigns, webinars and events. - Work with partners to activate and execute Campaigns in a Box, Cloud Ascent targeting, Co-op funds, workshops, security assessments and other Microsoft programmes and incentives. - Lead and deliver security-focused webinars and enablement sessions in collaboration both independently and in collaboration with Microsoft, Arrow partners or internal stakeholders. - Implement and maintain a strong Rhythm of Business with partners and Microsoft to track performance and pipeline progression. - Support partners in lifecycle motions including acquisition, renewals, upsell, and security workload expansion. - Track and report performance against Microsoft KPIs including acquisition, Reach, Frequency, Yield, and CSP growth. - Represent Arrow and Microsoft at solution aligned summits, bootcamps, and Microsoft-led events. Cultural Values - Creativity: Innovate and think outside the box to provide unique solutions. - Loyalty: Build and maintain strong, loyal relationships with partners. - Ownership: Take responsibility for your work and drive initiatives to completion. - Unity: Collaborate effectively with team members to achieve common goals. - Dedication: Show commitment and dedication to your role and the success of the team. Essential Experience - Strong background in IT relationship management, partner engagement, or vendor management. - Experience working with or alongside Microsoft and the Microsoft partner ecosystem. - Demonstrable interest in cybersecurity and cloud security solutions. - Proven ability to run structured partner motions, campaigns, and enablement initiatives. - Comfortable leading meetings, presenting to partners, and engaging senior vendor stakeholders. - Experience working cross-functionally with Sales and Marketing teams. Preferred Experience - Experience supporting or executing Microsoft programmes, e.g. SureStep. - Familiarity with Microsoft Security solutions within SMB and mid-market segments. - Experience owning or managing a marketing or campaign budget. - Exposure to CSP motions, partner incentives, and indirect go-to-market models. Qualifications - Bachelor’s degree in Business, IT, or a related field. - Excellent communication and stakeholder management skills. - Strong organisational skills with attention to detail and delivery. - Willingness to undertake ongoing vendor training and certification as part of continuous development. Certifications & Development - Willingness to complete Microsoft SC-900 as a minimum. - Commitment to further Microsoft Security certifications as part of your continuous professional development. What We Offer - Competitive compensation (base + variable). - Supportive work environment with flat structures. - 25 days of annual leave. - Professional and personal development opportunities. - Private healthcare and other benefits. Equal Opportunity Arrow is an equal opportunity employer committed to a diverse and inclusive workplace.

United Kingdom
Accenture logo

Identity Cybersecurity Manager

Accenture

Accenture es una compañía global líder en servicios profesionales con una amplia gama de soluciones en estrategia y consultoría, tecnología, operaciones y capacidades digitales. Accenture es una empresa que ayuda a las organizaciones a construir su núcleo digital, optimizar sus operaciones y acelerar el crecimiento de ingresos. Creemos que nadie debe ser discriminado por sus diferencias. Nuestra rica diversidad nos hace más innovadores, competitivos y creativos.

Security Engineer21 hours ago
Full TimeRemoteTeam 10,001+H1B Sponsor

Role Description Dank dir fühlen sich Cyberrisiken weniger bedrohlich an. Entwirf Security Lösungen, die unsere Kunden widerstandsfähig machen. Mit deiner Persönlichkeit und Individualität machst du den Unterschied. Im Team von Accenture steigern wir die unternehmerische Leistungsfähigkeit unserer Kunden und weisen ihnen den Weg ins digitale Zeitalter. So auch im Bereich Security: Hier stärken wir die Widerstandsfähigkeit unserer Kunden gegenüber Cyberrisiken. Wir identifizieren und bewerten Sicherheitslücken, entwickeln und implementieren Security-Strategien und beraten Kunden über alle Branchen hinweg zum optimalen Einsatz von Security-Lösungen. Das erwartet dich: - Gestalte sichere Lösungen. - Du analysierst das Identity und Access Management (IAM) unserer Kunden und entwickelst anschließend die entsprechenden Optimierungsstrategien. - In diesem Rahmen bist du für die Implementierung von Lösungen der Bereiche IAM, Privilleged Access Management (PAM), Identity Government, Identity Analytics und Enterprise Access verantwortlich. - Kommuniziere transparent. - Du stehst in kontinuierlichem Austausch mit dem jeweiligen Kunden und Vendoren. - Überzeuge mit deiner Persönlichkeit. - Last, but not least setzen wir auf deine offene Persönlichkeit, wenn es darum geht, neue Kundenprojekte zu akquirieren. Qualifications - Du hast ein abgeschlossenes technisches oder wirtschaftswissenschaftliches Studium. - Du bringst mehrjährige Erfahrung rund um IAM, PAM sowie Approval- und Zertifizierungsprozesse mit. - Du hast Anwenderkenntnisse in führenden Produkten und Technologien im Bereich IAM (wie z. B. SailPoint, CyberArk, ForgeRock Okta, u.v.m.). - Deine Deutsch- und Englischkenntnisse sind sehr gut – in Wort und Schrift. - Du besitzt eine Hands-on-Mentalität, analytische Denkweise, Kommunikationsstärke sowie eine eigenverantwortliche Arbeitsweise und hast Spaß an einer hohen Reisetätigkeit. Benefits - Arbeiten, wo du gebraucht wirst – an einem der Accenture-Standorte, remote oder beim Kunden vor Ort. - Umfangreiche Angebote für Fort- und Weiterbildung. - Lohnenswerte Corporate-Angebote, beispielsweise für Versicherungen und Altersvorsorge. - Attraktive Aufstiegschancen. - Eine Arbeitskultur, die Diversität und Inklusion fördert. Company Description In dieser Rolle bist du Teil von Accenture Security. Unser Ziel ist es die Welt zu sichern, indem wir unser Versprechen zu Technologien und menschlichem Erfindungsreichtum einlösen. Mit Services, die von Strategie und Beratung über Umsetzung bis hin zum Betrieb reichen, unterstützen wir unsere Kunden als vertrauensvoller Partner während des gesamten Security-Prozesses. Die Accenture-Kultur: Hier machst DU den Unterschied. Deine Fähigkeiten, dein Naturell und deine Ambitionen machen dich einzigartig. Und wenn die unterschiedlichsten Talente, Stärken und Sichtweisen aufeinandertreffen, entsteht etwas Großartiges: Ideen, die in der Welt etwas bewegen. Deshalb setzen wir bei Accenture auf Diversität und freie Entfaltung. Schaffe dir ein Arbeitsumfeld, in dem du aufgehst. Mit Aufgaben, die dir am Herzen liegen. Mit einem Workload, der zu dir passt. Und mit einer Arbeitsweise, die sich an deinen Zielen orientiert. Wie du dich vernetzen, weiterbilden und persönlich wachsen willst, liegt bei dir. Es ist deine Karriere. Wir helfen dir, sie so zu gestalten, wie du es dir vorstellst. Contact Noch Fragen offen? Schreib deiner persönlichen Ansprechpartnerin Isabella unter i.schulz-sembten@accenture.com. Wir freuen uns auf dich!

Germany
ICF logo

Security Engineer

ICF

We are not a typical consulting firm and our people are not typical consultants.

Security Engineer21 hours ago
Full TimeRemoteTeam 5,001-10,000Since 1969H1B Sponsor

Role Description This role is contingent upon a contract award. ICF is looking for an enthusiastic Security Engineer to join our team and help with ensuring our environments and applications meet Federal Security Standards. If you are a Security Engineer interested in applying your expertise in Security Engineering in a consulting environment, then this may be the role for you. This position requires that the job be performed in the United States. If you accept this position, you should note that ICF does monitor employee work locations and blocks access from foreign locations/foreign IP addresses, and also prohibits personal VPN connections. Our core work hours are 10am - 4pm Eastern Time with the option to start earlier or work later depending on your time zone. However, please note our client is on the east coast and may sometimes start a meeting earlier than 10:00 which may require your participation. Travel for a conference or to another ICF location for collaboration may be required once a year. Responsibilities - Perform Static Application Security Testing (SAST) to identify potential vulnerabilities in the application code and infrastructure. - Perform Dynamic Application Security Testing (DAST). - Create and update threat models for FISMA systems. - Assist and lead security incident response. - Assist with documentation of System Security plan and Contingency Plans for related projects. - Ensure security systems are up to date and create documentation and planning for all security-related information, including incident response and disaster recovery plans. - Review policies and procedures for compliance with applicable standards; and to identify areas of improvement for finding remediation. - Interact with senior level management, including the ISSO. - Use security assessment tools such as Nessus, Snyk, AWS GuardDuty and AWS Inspector. - Apply a demonstrated understanding of cryptography to secure web applications and data at rest. - Work with development teams to review and correct code written in higher level programming languages and scripts. - Work with DevOps teams to securely harden Linux based machines and cloud infrastructure. Qualifications - Bachelor’s Degree. - 5+ years of professional security engineering experience. - Candidate must be able to obtain and maintain a Public Trust. - Candidate must reside in the U.S., be authorized to work in the U.S., and all work must be performed in the U.S. - Candidate must have lived in the U.S. for three (3) full years out of the last five (5) years. What We Would Like You To Bring With You - Hands-on experience that includes: - NIST 800‑53 security controls. - System hardening and implementation of DoD STIGs. - Leading incident response activities. - Data management and applied cryptography. - Cloud security and infrastructure (AWS, Azure, and/or GCP). - Awareness of OWASP Top Ten and CWE Top 25. - Linux command line usage (e.g., bash, sh, zsh). - Scripting in Python, Perl, or similar languages. - Prior experience in consulting or healthcare is an advantage but not essential. - Strong engineering background. - Application architecture experience. - Federal Government contracting work experience. - One or more of the following certifications is preferred: - OSCP/OSCE/OWSE. - CISSP. - GPEN. - GXPN. - Security +. - CEH. Professional Skills - Good leadership and team-working skills. - Highly effective analytical, problem-solving, and decision-making capabilities. - Excellent communication and interpersonal skills to interface effectively at all levels of the business. - Organized, detailed oriented and able to prioritize and multi-task. - Ability to self-organize, prioritize and conduct work on multiple projects under tight deadlines in a fast-paced environment. - Prior experience working remotely full-time. Pay Range The pay range for this position based on full-time employment is: $98,614.00 - $167,644.00.

United States
$98.6K - $167.6K / year
Full TimeRemoteTeam 1,001-5,000H1B Sponsor

• Support cybersecurity engineering for the pilot, including cloud security, RMF/ATO support, compliance documentation, and continuous monitoring. • Secure AWS-based environments through identity and access management, encryption, logging, monitoring, network security, vulnerability management, and configuration hardening. • Configure, monitor, and support AWS security services such as AWS Network Firewall, Security Hub, GuardDuty, CloudWatch, CloudTrail, Inspector, and related capabilities. • Support security planning for an AWS Commercial Cloud environment with consideration for future migration to AWS GovCloud or another VA-approved hosting environment. • Assist with ATO planning, control implementation, evidence collection, compliance reporting, and approval workflows. • Work within eMASS, ServiceNow GRC, or similar risk management systems to support ATO artifacts, information assurance tasking, POA&M tracking, and security documentation. • Develop and maintain SSPs, POA&Ms, SOPs, risk assessments, control narratives, security diagrams, and remediation plans. • Support vulnerability assessments, DISA STIG hardening, configuration compliance reviews, remediation tracking, and audit readiness activities. • Integrate security requirements into architecture, sprint planning, CI/CD processes, testing, and deployment readiness. • Support security reviews for VIA platform capabilities, including data handling, access control, auditability, secure integration, and AI-enabled modernization workflows. • Collaborate with technical and non-technical stakeholders to translate security requirements into practical engineering, documentation, and compliance actions.

United States