Cyber Architect
Fluidra
- Sant Cugat del Vallès, Barcelona
- Permanente
- Tiempo completo
- You will have the chance to make a real impact by working on important projects with cutting-edge technology in a unique environment composed of IT, Industrial OT, and cloud IoT environments.
- Fluidra is a global leader in the pool and wellness sector with a long-standing history of developing innovative products and services.
- You will have the opportunity to work with a multicultural team of more than 7000 employees from over 45 countries, each with expertise and specialization.
- Fluidra offers a very competitive salary and benefits package.
- Support in the definition of the Cybersecurity Architecture and controls for existing and new solutions in our IT, OT and IoT multinational environments.
- Define security requirements for on-prem systems/applications and SaaS, IaaS, PaaS cloud services, and work with the technology teams to implement the controls.
- Participate in Digital Supply Chain reviews.
- Assist the different teams with vulnerability management and risk mitigation.
- Proactively research best practices, new technologies, and make recommendations for improvement.
- Research and explore emerging technologies at all layers of the technology stack, including systems, networks, and applications.
- At least 7 years of experience in Cybersecurity/Security Architecture.
- Good knowledge of the Information Security landscape, Cloud Security solutions, and current and emerging security threats.
- Proven ability to work independently, design, develop, deploy solutions, and deliver projects on time with minimal direction.
- Able to interact with business and technical counterparts in a fast-paced multinational environment.
- Experience with AWS Security Operations and Architecture.
- Knowledge of existing Security standards and frameworks: OWASP, NIST CSF, CIS Controls, MITRE ATT&CK.
- CISA, CISSP, OSCP, OSCE, or AWS certifications are a plus.
- Good knowledge of most common vulnerabilities and their mitigations.
- Good experience in risk management with a focus on security.
- Solid understanding of security protocols, network security, WAF, SSE, cryptography, IAM, authentication, authorization and credential management.
- Ability to interact with a broad cross-section of personnel to explain and enforce security measures.
- Good understanding of security within SDLC and experience in designing and applying security to the DevOps environment (Managing Secrets, Secure in the Pipeline, Container Security, IaC).
- Operational Technology (OT) / Industrial and Automation Control Systems (IACS) Cybersecurity experience is a nice-to-have.
- Full professional proficiency in English is required.