Job Summary: Indra Group is seeking a Software Engineer specialized in secure development for strategic R&D projects, applying best practices in software engineering, security, and quality. Key Highlights: 1. Lead the development of cutting-edge technological solutions for national security. 2. Collaborate on strategic R&D projects with international impact. 3. Participate in an innovative and transparent work environment. Location: Madrid, MD, ES Professional Profile: Software Development – Legacy Languages Required Experience: More than 2 years of experience Work Modality: Hybrid At **Indra Group, we protect what matters most.** We lead the development of cutting-edge technological solutions that strengthen national and international security. Join our team working on European projects! In our positioning as a leading company in the defense sector, we aim to strengthen our team with a **Software Engineer specialized in secure development**, contributing to a strategic R&D project by applying best practices in software engineering, security, and quality. **What will you do?** --------------- * Design and develop software following layered architecture principles, SOLID principles, and sound testing practices. * Work with at least two technology stacks (Java, Python, Rust, or others), applying robust design patterns. * Design and document REST APIs according to OpenAPI standards, including versioning, idempotency, pagination, and rate-limiting mechanisms. * Model and optimize SQL databases (indexes, transactions) and collaborate on NoSQL models when required; manage migration processes. * Apply security throughout the development lifecycle: input validation and normalization, protection against XSS, CSRF, SQLi, SSRF, insecure deserialization, path traversal, and other OWASP Top 10 risks. * Integrate secure authentication and authorization mechanisms: OIDC/OAuth2, JWT (aud/iss/exp), session management, refresh tokens, and scope/role/claim definitions. * Apply practical cryptography: TLS, bcrypt/argon2, encryption in transit and at rest, and sound key management practices. * Implement DevSecOps strategies: unit testing, integration testing, contract testing, and security testing. * Enhance software observability through structured logging, correlation IDs, metrics, alerts, and secure error handling. * Design resilient systems using retries/backoff, timeouts, circuit breakers, and controlled degradation strategies. * Apply "secure by design" principles: least privilege, separation of responsibilities, auditing, and traceability. * Participate in code reviews with a security focus and provide improvement recommendations. * Collaborate with security and operations teams, clearly communicating risks, trade-offs, and remediation plans. **What are we looking for in you?** ------------------------ Don’t worry if you don’t meet 100% of the criteria. Go ahead—explore our offer and let us discover what you can bring to our team! * At least 4 years of software development experience. * Proficiency in at least two technology stacks (Java, Python, Rust, or equivalent). * Experience with layered architecture, SOLID principles, and robust software design. * Experience designing and implementing REST APIs and documenting them using OpenAPI. * Solid knowledge of SQL databases and familiarity with NoSQL concepts. * Strong understanding of applied code security, OWASP Top 10, and validation best practices. * Experience with modern authentication/authorization mechanisms (OIDC, OAuth2, JWT, etc.). * Knowledge of practical cryptography oriented toward production environments. * Experience with DevSecOps strategies, testing, and observability. * Knowledge of resilient system design. * Experience conducting code reviews and communicating effectively with multidisciplinary technical teams. * Availability for hybrid work model in Madrid. **What we offer you** ----------------------- * **Stability and Future**: Long-term projects within a leading defense company employing over 50,000 professionals, backed by financial stability. * **Innovative and High-Impact Projects**: Work with cutting-edge technologies, delivering impact both nationally and internationally. * **Close and Transparent Environment**: Direct and fluid communication with managers and colleagues, in a collaborative and open setting. * **Autonomy and Flexibility**: Freedom to organize your work, with genuine work-life balance adapted to your rhythm (hybrid model). * **Personalized Career Plan**. * **Continuous Training**: Open University, Udemy for Business — over 6,000 courses. * **Wellness Discounts**: Gyms, restaurants, shops, leisure activities, etc. * **Competitive Compensation** and flexible compensation plans. Location: Alcobendas Modality: Hybrid What does our selection process look like? Profile Review – We assess your experience and skills to determine whether you match our requirements. Initial Contact (5–10 minutes) – If you receive a call from an unknown number, it’s our team! A brief conversation to get to know you and address any questions. Technical Interview – You’ll meet the team, who will explain the project and daily tasks. We’ll also explore your technical knowledge. Additionally, short psychological and English proficiency assessments (if required) will be conducted. Offer and Onboarding – If everything goes well, you’ll join our team and begin this new chapter together! Estimated Duration: 1–2 weeks. Our commitment is to foster workplaces where people are treated with respect and dignity, supporting professional development of our staff and ensuring equal opportunities in recruitment, training, and promotion—providing a work environment free from discrimination based on gender, age, disability, sexual orientation, gender identity or expression, religion, ethnicity, marital status, or any other personal or social circumstance. Indra is a Top Employer 2025! Join a company certified as one of Spain’s best employers, thanks to our comprehensive HR management and the conditions we offer our professionals.