Browse
···
Log in / Register
DESCRIPTION We are seeking a **Junior Security Technician** to provide support in a **Public Administration (AGE)** environment, participating in **incident management**, **vulnerability management**, **internal technical audits**, and **offensive security testing** (pentesting), working with corporate tools and recognized methodologies (OWASP). **Service:** Technical assistance for administration, operation, and security management **Location:** Madrid (remote service) **Modality:** 100% Remote **Working Hours:** 8:30 AM – 5:30 PM (Mon–Fri) ### **Functions and Responsibilities** * Management and resolution of reported **security incidents** from corporate probes/services (e.g., SAT\-INET, SAT\-SARA, COCS) using tools such as **LUCÍA, GLORIA, and GrayLog**. * Management of **vulnerabilities** based on notifications/alerts from external sources (COCS Prevention, **CCN**, **CVE\-MITRE**, etc.). * Internal **technical security audits** of infrastructure and workstations. * Management of **authorizations** for software installation and web navigation via **web proxy**. * Development of **security procedures and technical instructions** for the infrastructure area. * Support for **system integrations**, communications, and security with AGE’s COCS services. * Resolution of **technical security queries**. * **Penetration testing (pentesting)**. * **Black-box and gray-box audits** of systems and applications based on **OWASP**. Join a specialized team in **cybersecurity** and SOC operations. Stable project within a high-criticality environment featuring mature processes. **Telecommuting** (remote service) and continuous learning on industry-standard tools and frameworks. REQUIREMENTS * **Education:** University Bachelor’s Degree / Diploma / Technical Engineering (or equivalent). * Experience in **pentesting** and **black-box / gray-box auditing**. * Approximate experience in security consulting/vulnerability analysis tools: * **OWASP ZAP, Burp Suite, SOAP UI, Nessus** (or equivalent tools). * Querying repositories and managing alerts: **MITRE CVE/CWE**. * Prior experience in **SOC/CSIRT** (Security Operations Center / Incident Response Team). * Proficiency with monitoring and logging tools such as **GrayLog**. ### **Desirable Qualifications** * Experience with **CCN** tools/solutions: **ANA, LUCÍA, MARTA, microCLAUDIA**. * Knowledge/experience in cybersecurity architectures and tools: **IDS/IPS, SIEM, WAF, perimeter protection, and endpoint protection**. * Certifications (desirable, not mandatory): * **SANS** (GISF, GCED, GDSA…) * **(ISC)²** (CISSP, ISSAP, ISSEP, ISSMP…) * **EC\-Council** (CEH, CND, APT, ECSS…) * **CCSP / ISMS** * **Microsoft** (MTA: Security Fundamentals) * **CompTIA** (Security\+, PenTest\+, CySA\+)
