Job Summary: We are seeking a Cybersecurity Analyst (Ethical Hacking) to conduct offensive security assessments, identify vulnerabilities, and collaborate on their mitigation within an AI-driven environment. Key Highlights: 1. Redefine AI-driven cybersecurity 2. Impact strategic projects with cutting-edge technology 3. Career development and stability with a structured career path and training **Description:** ---------------- Join Ciberia and redefine the future of AI-driven cybersecurity! At Iris, we don’t just build companies—we forge leaders in technological innovation. Our mission focuses on redefining our clients’ futures through the most advanced technologies (Cloud, Cybersecurity, Data, AI). We are driven by ambition, excellence, innovation, transparency, empathy, and trust. We invite you to join Ciberia, the new global benchmark in managed cybersecurity services—powered by Artificial Intelligence and backed by Google Cloud Security. We are a Google Premier Partner in Cybersecurity for EMEA and LATAM, operating across 5 countries. If you seek an environment where your professional judgment impacts strategic projects and where you work with cutting-edge technology, this is your place. We are looking for a **Cybersecurity Analyst (Ethical Hacking)** to join a team tasked with executing offensive security assessments (penetration testing) on applications, infrastructures, networks, APIs, and cloud environments—identifying technical vulnerabilities and collaborating on their mitigation. **What You’ll Do:** * Penetration Testing Execution: Conduct offensive tests on web, mobile, network, Active Directory, and cloud environments. * Impact Analysis: Identify, validate, and prioritize technical vulnerabilities based on their real-world risk. * Technical Testing: Combine manual testing with automated tools to detect design flaws and access control failures. * Reporting and Collaboration: Document findings with evidence and recommendations; collaborate with development and systems teams on mitigation plans. * Continuous Improvement: Participate in re\-tests and update the team’s methodologies, checklists, and TTPs. **Requirements:** --------------- **What We’re Looking For in You:** * Education: Degree in Computer Engineering, Telecommunications, or Cybersecurity. * Experience: Penetration testing, ethical hacking, or technical security assessment. * Skills: Real-world attacker mindset, strong analytical ability, and excellent technical writing skills. * Essential Knowledge: * Networks and Web: TCP/IP, DNS, HTTP/S, APIs, and web application security. * Systems: Windows, Linux, Active Directory, and privilege management. * Methodology: Enumeration techniques, controlled exploitation, and validation. * Tools: Proxies, vulnerability scanners, and scripting for automation. **Nice-to-Have:** * Certifications: OSCP, eJPT, PNPT, CRTO, or similar. * Specializations: Cloud (GCP/AWS/Azure), Red Team, Mobile Penetration Testing, or CI/CD Security (Kubernetes). * Frameworks: OWASP, MITRE ATT\&CK, NIST. **What We Offer:** * Inspiring Location: Offices in Barcelona’s upscale district, offering panoramic views and a natural setting designed to foster innovation and wellbeing. * Development and Stability: Defined long-term career path \+ Investment in your training with free access to multiple e\-learning platforms. * Elite Mentorship: Intensive mentoring period at the start of your onboarding to ensure success in your role. * Holistic Wellbeing: Free access to a comprehensive nutrition plan, physiotherapy, and coaching. Your physical and mental health is our top priority. * Rest and Other Benefits: Enjoy 23 working days of vacation per year and optimize your salary with a flexible compensation plan (health insurance, meal vouchers, transportation allowances, childcare vouchers). If you’re ready to transform cybersecurity alongside Google’s Premier Partner—applying your passion for technology in an environment that values ambition and excellence—we want to meet you!