The Role:
We are looking for a talented and driven Cybersecurity Engineer to join our Security Operations team.
This is a highly hands-on role focused on threat investigation, detection engineering and security platform operations. You will act as a key escalation point for complex incidents while continuously improving detection capabilities and strengthening our overall security posture.
Key Responsibilities:
· Investigation & Incident Response
o Conduct in-depth investigations of threats and suspicious activities.
o Act as a critical escalation level for complex security incidents.
· Detection Engineering
o Develop and manage detection rules.
o Improve visibility while reducing false positives and enhancing detection quality.
· Security Platform Operations
o Administer and optimize key security tools: EDR/XDR, SIEM, Email Security, AppSec, PAM, IAM.
o Provide operational support for additional technologies including Proxy, NGFW, and NAC.
· Technical Documentation
o Produce and maintain Playbooks, incident reports (RCAs), and standardized SOC procedures.
· Automation & Engineering
o Contribute to automation initiatives using Python, Terraform, and Ansible.
Required qualifications:
· Minimum of 5 years of experience in cybersecurity, SOC (L2/L3) operations, or a related field.
· Hands-on experience implementing security platforms and managing incidents.
· Our core stack is built on the Microsoft 365 ecosystem, Palo Alto Networks, and other leading vendors; however, we highly value previous experience with similar tools such as Splunk, CrowdStrike, SentinelOne, etc.
· Strong knowledge of log administration, network protocols (TCP/IP, DNS, HTTPS, etc), and Windows/Linux system.
· Operational knowledge of NIS2, ISO 27001, or CIS Controls.
· Advanced level of English (daily working language).
Additionally valued:
o Relevant certifications such as CompTIA Security+, Blue Team Level 2 (BTL2), GIAC (GCIH/GCFA), CEH, CISSP, Microsoft SC-200/SC-300, or vendor-specific certifications (Palo Alto, Splunk).
o Experience in DevSecOps environments and container security.
o Proven experience in cloud security (Azure, AWS, or GCP).
Soft Skills:
· Strong analytical and troubleshooting ability.
· Clear communication skills and collaborative mindset.
· Commitment to continuous learning.
· Assertiveness and ownership.
What do we offer?
· Join an innovative team and experience company growth.
· We believe in investing in our employees and providing them with the opportunities they need to grow and develop their careers.
· Enjoy a hybrid work environment.
· We also offer flexible schedule.
· We offer a remuneration that values your experience.
· The position will have the base in Barcelona.
We are looking for outstanding people willing to join our mission to change this industry and help to build a better world.
If you feel identified with Openchip, please contact us. We can offer a competitive compensation package in a flexible work schema that will help you to keep a balance between your personal and professional life.
At Openchip & Software Technologies S.L., we believe a diverse and inclusive team is the key to groundbreaking ideas. We foster a work environment where everyone feels valued, respected, and empowered to reach their full potential – regardless of race, gender, ethnicity, sexual orientation, or gender identity.