Job Summary: DXC Technology is seeking a Cloud Security Consultant to design, implement, and maintain security controls in cloud and hybrid environments, primarily Azure. Key Responsibilities: 1. Design, implement, and maintain security controls in cloud environments. 2. Administer identities and access in Entra ID and manage security alerts. 3. Collaborate with multidisciplinary teams on security integration. **Job Description:** **DXC Technology** is a global professional services company whose mission is to lead the digital transformation of our clients by advising and guiding them in applying technology to achieve optimal results that enhance their business competitiveness. With more than 130,000 professionals and technology experts collaborating across more than 70 countries alongside an exceptional network of partners, we deliver advanced IT services and solutions. In Spain, we are one of the leading IT market players. We employ nearly 8,000 professionals across thirteen locations, with centers of excellence in cutting-edge technologies such as Cloud, Business Intelligence, AI, and Automation, serving over 200 clients across all industries—both public and private sectors. We work with leading national enterprises that trust us to guide and manage their digital agendas and transform their businesses. We implement active policies promoting diversity and inclusion for people with disabilities and are proud to have approximately 49% women professionals. At DXC Spain, we are looking for a Cloud Security Consultant to join our large **Security Iberia** team. **Requirements:** * 5+ years in cybersecurity or cloud administration. * Experience in Azure environments or hybrid environments with cloud workloads. * Azure Security Center / Defender for Cloud (even at an operational level). * Entra ID (MFA, groups, roles, basic conditional access). * Fundamental concepts of Zero Trust and cloud hardening. * Microsoft Sentinel (monitoring, basic detection rules, simple KQL queries). * Defender XDR (identity, endpoint, or cloud app alerts). * Basic knowledge of cloud security recommendations and reviewing configurations and findings (CIS, best practices). **Desirable Requirements:** * Experience with CSPM (Wiz, Defender for Cloud, Prisma). * Experience with KQL or basic automation (PowerShell/Logic Apps). * Certifications (SC-900, AZ-900, MS-500, AZ-104). * Participation in security incidents of moderate complexity. **Responsibilities:** * **Design, implement, and maintain security controls** in cloud and/or hybrid environments—primarily on Azure—ensuring compliance with industry best practices and standards. * **Configure, operate, and optimize Azure security solutions**, including Azure Security Center / Defender for Cloud, reviewing alerts, recommendations, and overall security posture. * **Administer identities and access in Entra ID**, managing MFA, groups, roles, conditional access policies, and other key elements within the Zero Trust model. * **Participate in cloud architecture and configuration reviews**, identifying risks, deviations from best practices (CIS, benchmarks, or other guidelines), and proposing remediation plans. * **Monitor cloud infrastructure and services using Microsoft Sentinel**, creating basic detection rules, dashboards, and KQL queries for event and threat analysis. * **Manage and respond to security alerts in Defender XDR** related to identity, endpoints, or cloud applications, collaborating with internal teams for incident mitigation and resolution. * **Contribute to continuous improvement of the security posture**, proposing hardening measures, control automation, implementation of Zero Trust principles, and adoption of new tools or capabilities. * **Produce technical and operational documentation**, including findings reports, procedures, recommendations, and evidence required for audits or security assessments. * **Collaborate with multidisciplinary teams** (infrastructure, operations, development, governance) to ensure proper integration of security across all cloud project processes and phases. **What You’ll Find at DXC:** * Professional development. * Cutting-edge projects with market-leading clients. * Excellent working environment. * Flexibility and work-life balance. * Opportunities to work with leading-edge IT technologies. * Access to DXC Learning and official certifications. * Social and responsible commitment. * Stable employment. * Social benefits. At DXC Technology, we believe strong connections and community are key to our success. Our work model prioritizes in-person collaboration while offering flexibility to support wellbeing, productivity, individual work styles, and life circumstances. We’re committed to fostering an inclusive environment where everyone can thrive. **Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf.**