ToBeIt is looking for a Security Architect and Cyber-Threat Intelligence Analyst to work with one of our major international leader in the aeronautical sector with offices in Barcelona (Viladecans).

Currently seeking a professional to join our Information Security Office (OSI) team as a Security Architect and Cyber-Threat Intelligence (CTI) Analyst. This person will work closely with the CTI and OSI colleagues, as well as other leaders throughout the organization to ensure that the information is properly protected through the development of appropriate protection and response programs.

You will:

• Work within the CTI team.
• Lead the review and implementation of security controls in the AWS, Microsoft, Azure and O365 environments and promote good practices.
• Design and define security controls, as well as participate in assurance processes to ensure the effectiveness of those controls.
• Analyze the security outcomes of various technologies to effectively resolve security practices and response.
• Generate security reports and KPIs.
• Communicate and support users in a proactive and pragmatic manner after executing response actions that affect their activities.
• Provide, as necessary, technical guidance and guidance to less experienced staff, taking a proactive approach to mentor other members of the OSI team.
• Additionally, you may participate in certain incident response activities.
• Be asked to take on additional duties as well, when needed.
• Work up to 80% remotely.
  
  

Required Skills & Experience

• Have a bachelor’s degree or equivalent.
• Have at least 3-5 years of professional experience working within Information Security and the responsibilities described above.
• Knowledge and experience effectively configuring Cloud, on prem, and networks.
• Perform ongoing security assessments and governance checks for Microsoft services ensuring critical security systems and controls remain effective and available.
• Experience in Azure AD, Cloud App Security/MCAS, Azure Information Protection, ATP, EOP, Microsoft Defender for Azure/365 and Microsoft Purview solutions such as DLP, Cataloging, Labeling Identities and Access management.
• Experience in developing Cloud security solutions integrating it with cloud-native tools.
• Knowledge and experience in server infrastructure based on Microsoft Windows Server (2012, 2016, 2019)
• Familiar with system hardening control frameworks such as the CIS Benchmark
• Knowledge of security technologies (SIEM, WAF, NAC, MDM, etc.)
• Detailed understanding of network protocols and services (TCP / IP, HTTP / HTTPS, REST / SOAP, FTPS / SFTP, DNS, SSL, firewalls, load balancers)
• Good skills with scripting languages such as: PowerShell, Python or bash.
• Strong background in all aspects of IT.
• Fluent English proficiency (minimum B2, desirable C1).
• Good interpersonal communications skills (verbal & written).
• Good time management and related organizational skills.
  
  

Desirable but not required:

• Microsoft Security Associate Certifications (Microsoft SC-900, Microsoft SC-500, etc.) and Microsoft Security Architect Certification (SC-100)
• Familiar with AWS services such as: EC2, S3, CloudFormation, RDS, CloudFront, VPC, Route53, IAM, CloudTrail, CloudWatch, Lambda, etc.
• Advanced understanding of Information Security and Cybersecurity; security certification (e.g., CEH, OSCP, CISSP, CRISC, CISA, CISM, etc.) is a plus.