




Job Summary: Join a strategic cloud security, zero-trust, and high-criticality multi-tenant environment project, working on the definition and implementation of secure architectures. Key Highlights: 1. Strategic project focused on cloud security and zero-trust 2. Design and implementation of secure architectures on AWS and Kubernetes 3. Collaboration with DevSecOps and cloud architecture teams DESCRIPTION Join a strategic project focused on cloud security, zero\-trust, and high-criticality multi\-tenant environments. You will work on defining and implementing secure architectures, automating compliance and hardening in large-scale Kubernetes and AWS ecosystems. **Conditions** --------------- * Remote work mode * Working hours: 50% assignment * Salary: Based on professional experience **Responsibilities** ------------- * Design and implement end\-to\-end secret management and encryption solutions * Define environment isolation and microsegmentation strategies * Implement zero\-trust policies in multi\-tenant cloud environments * Automate guardrails, compliance, and security evidence generation * Design access controls and secure architectures on AWS and Kubernetes * Implement and secure service mesh with mTLS * Participate in threat modeling, incident response, and CIS hardening * Collaborate with DevSecOps and cloud architecture teams REQUIREMENTS **Mandatory** ------------------ * Over 6 years of experience in cloud security and/or DevSecOps * Advanced experience with AWS Secrets Manager, Parameter Store, and HashiCorp Vault * Solid knowledge of Kubernetes Security: NetworkPolicies, Kyverno, OPA, Cilium * Experience with IAM, SCPs, multi\-account AWS Organizations, and blast\-radius isolation * Proficiency in cloud networking: VPC, TGW, Security Groups, NACL, PrivateLink, ALB/NLB * Experience with Service Mesh (Istio or Linkerd) and mTLS * Advanced knowledge of cryptography and TLS 1\.2/1\.3 * Experience in DevSecOps pipelines: SAST, DAST, SCA, tfsec, Checkov * Knowledge of compliance and automated evidence: CIS, ISO27001, SOC2 * Experience with SIEM and incident response * Current residence in Spain **Desirable** ------------ * Experience in financial or highly regulated environments * Knowledge of STRIDE and advanced threat modeling * AWS Security, CKA/CKS, or HashiCorp Vault certifications * Intermediate level of English #### **Digital Group** #### **We are a team of over 100 technology professionals, offering stable projects with leading national and international clients, developing solutions in Artificial Intelligence, Cloud, Cybersecurity, etc.** #### **We commit to supporting you throughout every phase of the project to ensure your professional growth with us and that your contribution truly matters.** #### **Want to stay up-to-date with the latest technologies and seek new challenges? Send us your CV and we’ll contact you!**


