Job Summary: In this position, your mission will be to analyze the security posture of services and systems in production, identifying action plans to remediate critical technical security gaps stemming from design flaws. Key Highlights: 1. Join a leading team in cybersecurity technical consulting. 2. Contribute to digital transformation with a security-by-design approach. 3. Continuous professional development through training and certifications. **What is Telefónica Tech?** Telefónica Tech is the Group Telefónica’s leading digital transformation company. We offer a comprehensive portfolio of integrated technological services and solutions in Cybersecurity, Cloud, IoT, Big Data, Artificial Intelligence, and Blockchain, supporting our clients throughout their digital transformation journey. We are a group of over 6,200 courageous professionals working daily from various locations worldwide to achieve excellence through leadership rooted in transparency and teamwork. If you identify with our core values, we look forward to meeting you! www.telefonicatech.com **What do we do in the team?** At Telefónica Tech’s **Cybersecurity Technical Consulting Unit**, we specialize in delivering cybersecurity consulting, audits, and architecture services with a strong technical focus. **What will your day-to-day look like?** Your mission will be to analyze the security posture of the entire portfolio of deployed services and systems in production, and identify necessary action plans to remediate the most relevant technical security gaps arising from design flaws. On a daily basis, you will primarily: + Perform a technical characterization of the service/system, considering each of its constituent assets—understanding its functionality, SW/HW components and versions, protocols used to deliver the service, interdependencies with other assets required for operation, the data it handles and how it uses such data, its communication flows, its operational model, etc. + Verify the level of compliance with required security controls, as defined in the reference security model. This verification must be holistic—considering both the overall architecture and each individual asset and component—and must involve effective validation of control implementation, either via direct inspection of the asset (white-box) or via testing (black-box). + Prepare a report detailing the identified technical design-related security gaps, along with an assessment of compliance against expected standards. + Develop action plans needed to remediate the most critical technical security gaps. **And for this, we believe it would be ideal if you had…** **Experience** + 2 years of experience in technical roles related to Security Architecture, Secure Development, and Project Management **Education** + Degree in Computer Science, Telecommunications, or equivalent qualification. **Technical Knowledge** We require the following: * **Administration knowledge of:** + Service systems and platforms: operating systems, databases, applications, web portals, APIs. + Communication equipment: firewalls, routers, switches, load balancers, SDN. + Virtualization technologies: VMware, KVM, Docker, Kubernetes, OpenShift. + Public Cloud platforms: AWS, Azure, Google Cloud, and OCI. * **Technical knowledge of protocols and operational principles** underlying current services and systems. * **Security-by-design expertise**, enabling identification of vulnerabilities, threats, and risks affecting services and systems, as well as the technical security measures required for their mitigation. **Languages** * Intermediate/advanced written English **The skills that would best fit this role, the team, and the project are:** + End-to-end vision of Security Architecture and Secure Development. + Technological and business-oriented perspective. + Autonomy and initiative. + Trustworthiness and excellence in execution. **What do we offer?** * Work-life balance measures and flexible working hours. * Continuous training and certification opportunities. * Hybrid remote work model. * Attractive social benefits package. * Excellent, dynamic, and multidisciplinary working environment. * Volunteering programs. **\#WeAreDiverse \#WePromoteEquality** We firmly believe that diverse and inclusive teams are more innovative, transformative, and achieve better results. Therefore, we actively promote and guarantee inclusion for all individuals, regardless of gender, age, sexual orientation or identity, culture, disability, or any other condition. We want to meet you!