Senior Cybersecurity Professional (AI)
ΠΡΡΡ & Π‘ΠΎΠΏΡΠΎΠ²ΠΎΠ΄
ΠΠ»Ρ ΠΌΡΡΡΠ° Ρ ΡΡΠΎΠΉ Π²Π°ΠΊΠ°Π½ΡΠΈΠ΅ΠΉ Π½ΡΠΆΠ΅Π½ Plus
ΠΠΏΠΈΡΠ°Π½ΠΈΠ΅ Π²Π°ΠΊΠ°Π½ΡΠΈΠΈ
TL;DR
Senior Cybersecurity Professional (AI): Redesigning modern Security Operations Centers by integrating Detection & Response expertise with agentic AI capabilities with an accent on security automation and scalable workflows. Focus on transforming traditional SOC processes into intelligent systems and designing human-in-the-loop automation models.
Location: Remote (Spain)
Company
is a global technical consultancy specializing in custom software development and cutting-edge projects in AI and blockchain.
What you will do
- Analyze SOC operating models and L1/L2 activities to identify AI automation opportunities.
- Design AI-native workflows and agentic security operations to assist analysts in triage and investigation.
- Create automation blueprints for detection and response, converting playbooks into structured workflows.
- Integrate SIEM, SOAR, and XDR platforms into a cohesive, AI-driven security ecosystem.
- Establish human-in-the-loop models and approval workflows for high-impact security actions.
- Collaborate with AI engineering teams to ensure agentic workflows are secure, traceable, and auditable.
Requirements
- 6+ years of experience in cybersecurity, specifically in Detection & Response, SOC operations, or security architecture.
- Proven experience implementing AI automation, AI-assisted workflows, or agentic automation.
- Deep understanding of L1, L2, and L3 SOC functions and incident response procedures.
- Hands-on expertise with SIEM and SOAR platforms.
- Ability to translate analyst procedures into structured decision trees and technical automation requirements.
- Must be based in Spain
Nice to have
- Experience with Microsoft Sentinel, Defender XDR, or Microsoft Security Copilot.
- Proficiency in KQL, SPL, or similar SIEM query languages.
- Knowledge of MITRE ATT&CK mapping and threat intelligence enrichment.
- Experience with MDR/MSSP operating models or Purple Teaming.
- Background in DevSecOps or infrastructure automation.
Culture & Benefits
- Flexible 35-hour work week with optional fully remote work.
- Fully free health insurance and co-payment for dental services.
- Individual budget for training, equipment, and free Microsoft certifications.
- Monthly bonus for electricity and internet expenses.
- Flexible compensation options for restaurant, transport, and childcare.
- Annual team-building event (Plain Camp) and birthday day off.
Hiring process
- Phone screen.
- Two interviews with the team.
ΠΡΠ΄ΡΡΠ΅ ΠΎΡΡΠΎΡΠΎΠΆΠ½Ρ: Π΅ΡΠ»ΠΈ ΡΠ°Π±ΠΎΡΠΎΠ΄Π°ΡΠ΅Π»Ρ ΠΏΡΠΎΡΠΈΡ Π²ΠΎΠΉΡΠΈ Π² ΠΈΡ ΡΠΈΡΡΠ΅ΠΌΡ, ΠΈΡΠΏΠΎΠ»ΡΠ·ΡΡ iCloud/Google, ΠΏΡΠΈΡΠ»Π°ΡΡ ΠΊΠΎΠ΄/ΠΏΠ°ΡΠΎΠ»Ρ, Π·Π°ΠΏΡΡΡΠΈΡΡ ΠΊΠΎΠ΄/ΠΠ, Π½Π΅ Π΄Π΅Π»Π°ΠΉΡΠ΅ ΡΡΠΎΠ³ΠΎ - ΡΡΠΎ ΠΌΠΎΡΠ΅Π½Π½ΠΈΠΊΠΈ. ΠΠ±ΡΠ·Π°ΡΠ΅Π»ΡΠ½ΠΎ ΠΆΠΌΠΈΡΠ΅ "ΠΠΎΠΆΠ°Π»ΠΎΠ²Π°ΡΡΡΡ" ΠΈΠ»ΠΈ ΠΏΠΈΡΠΈΡΠ΅ Π² ΠΏΠΎΠ΄Π΄Π΅ΡΠΆΠΊΡ. ΠΠΎΠ΄ΡΠΎΠ±Π½Π΅Π΅ Π² Π³Π°ΠΉΠ΄Π΅ β