Continuous Security Assurance Engineer (Hybrid option), Madrid (M, ES)

Location: Madrid, M, ES

Join a team of cybersecurity professionals and help Swiss Re to fulfil its mission in making the world more resilient. As CSA Engineer, you'll be building software and engineer solutions to advance our cybersecurity capabilities and our own resilience, as well as, supporting pentesting, vulnerability management and red team demands. What's more, you'll be working in a flexible setup, perfectly balancing work from home and the office premises.

About the team

The Security Team is the focal point for all security activities across Swiss Re. We are responsible for cybersecurity engineering and operations, governance, risk and compliance. We define and advance the company's security strategy. As a part of the Security Team, the Vulnerability Management Engineering team owns and develops applications and tools for vulnerability management, penetration testing, and Red Teaming.

We are looking for an expert engineer who'll help us to integrate vulnerability sensors, process vulnerability data and improve our security operations through automation.

In your role, you will…

• Improve Swiss Re's cyber defence posture by integrating vulnerability information from different sources and enriching it with contextual information.
• Designing Engineer solutions in a modern, API-driven multi-cloud environment.
• Desing, Deploy, operationalize and maintain vulnerability scanning solutions widely used across the Company.
• Deploy, configure and maintain solutions to scan for vulnerabilities in CI/CD.
• Supporting CSA operations teams, IT and sensors owners on remediating vulnerabilities and/or meeting security standards within defined process.
• Work with QA experts and Software developers to ensure our solutions and integrations meet security requirements and reliability and availability expectations.
• Have a chance to learn more about information security, vulnerability management, and Identity & Access Management.
• Act as part of an agile team (Scrum).

Your qualifications

Nobody is perfect and meets 100% of our requirements. If you, however, meet some of the criteria below and are curious about the world of vulnerability management inside a well-established cybersecurity infrastructure, we'll be more than happy to meet you!

What we need from you

• 8+ years of relevant work experience.
• Bachelor´s degree in Computer Science, Software Engineering or equivalent is a must
• Passion, drive, and a belief in the value of vulnerability management as an enabler of business performance.
• Familiarity with vulnerability scoring methods, vulnerability management tools and processes.
• Fundamental knowledge of cybersecurity concepts and DevSecOps tools.
• Advance knowledge on Infrastructure .
• Experience with managing tools for SAST and DAST scanning.
• Knowledge of a major public cloud ecosystem (Microsoft Azure preferred).
• Knowledge of Azure security tooling.
• Knowledge on microarchitecture design in Azure and other cloud providers.
• Excellent oral and written communication skills (English).

Nice-to-have

• Experience with infrastructure-as-code technologies.
• Experience with agile development and DevOps.
• Experience building integrations to existing systems.
• Proficiency in RESTful based applications, cloud technologies, containers.

For Spain, the base salary range for this position is between [EUR 60,000] and [EUR 100,000] (for a full-time role). The specific salary offered considers:

• the requirements, scope, complexity and responsibilities of the role,
• the applicant's own profile including education/qualifications, expertise, specialisation, skills and experience.

In addition to your base salary, Swiss Re offers an attractive performance-based variable compensation component, designed to recognise your achievements. Further you will enjoy a variety of global and location specific benefits.

Eligibility may vary depending on the terms of Swiss Re policies and your employment contract.

#LI-Hybrid