Cyber and Digital Security Expert - Digital

We are looking for a Cyber and Digital Security Expert - Digital Protection to be part of our Digital Protection Security team

Position's snapshot :

• Location: Barcelona
• Type of Contract: Permanent
• IT Security & Compliance
• Type of work: Hybrid
• Work Language: Fluent Business English

Position Summary Cyber and Digital Security Expert - Digital Protection: Under the supervision and guidance of their primary Community of Practice Lead and Product Group Manager, the Cyber and Digital Security Expert - Digital Protection is responsible for establishing and maintaining security products, platforms and solutions designed to mitigate Digital IT risks across the Group to ensure that information assets are adequately protected.

This person is responsible for the identification, evaluation, reporting and mitigation of information security risks in a manner that meets compliance and regulatory requirements, aligning with and supporting the risk posture of the enterprise.

This person will proactively work with IT and business units to implement practices that meet defined policies and standards for information security.

The Cyber and Digital Security Expert - Digital Protection continuously researches and stays on top of emerging security threats, technologies and trends.

What you’ll do

• Ensures new products, platforms and solutions are implemented "Secure & Compliant by Design"
• Support Product Manager to optimize the support model.
• Design, implement, and manage Akamai edge acceleration ensure top class consumer experience.
• Provides strategic risk guidance for IT projects and product management, including the evaluation and recommendation of technical controls in regards to Application Security.
• Works closely with Enterprise Architects, other functional area architects and other Security Specialists to ensure adequate security solutions are in place throughout all IT products and platforms to mitigate identified risks sufficiently and to meet business objectives and regulatory requirements.
• Support Product Manager to design the roadmap for Digital Protection Security including the assessment of new vendors, tools, and solutions.

We offer you We offer more than just a job. We put people first and inspire you to become the best version of yourself.

• Great benefits including competitive salary and a comprehensive social benefits package. We have one of the most competitive pension plans on the market, as well as flexible remuneration with tax advantages: health insurance, restaurant card, mobility plan, etc.
• Personal and professional growth through ongoing training and constant career opportunities reflecting our conviction that people are our most important asset.
• Hybrid working environment with flexible working scheme. Our state-of-the-art campus is dog friendly and equipped with a medical center, canteen and areas to co-create network and chill!
• Recreation activitie s such as yoga, Zumba, etc. and a wide range of volunteering activities.

Minimum qualifications :

• 8+ years of experience in a combination of Information Security Web Application Firewall and Architecture jobs — at least four must be in a senior role.
• Excellent written and verbal communication skills in English, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and non-technical audiences (e.g. management, agencies, vendors).
• Experience deploying and operating preventative technologies such as WAF, anti-bot, anti-fraud technologies, integrated cybersecurity SDKs, and other preventative cybersecurity technologies.
• Proven experience in designing, implementing, and managing security solutions for content delivery through the Akamai CDN.
• Strong knowledge of content delivery network (CDN) principles, CDN security features, and associated technologies.
• Excellent analytical and problem-solving skills, with the ability to quickly identify and respond to security incidents.
• Experience determining technical security requirements by evaluating business strategies and needs following a risk-based approach, and describe associated data flows and security controls needed, interacting with a broad cross-section of personnel to explain and enforce security measures.
• Proven track record and experience developing cybersecurity architecture, policies and controls and successfully executing these into a live environment.

Bonus Points If You :

• Have professional security, cloud or software architecture certifications, such as a CISSP, CISSP-ISSAP, CSSLP, GIAC, or other similar credentials, is preferred
• Have knowledge of common information security frameworks, such as ISO 27001, NIST, MITRE and OWASP
• Have knowledge of industry standards and frameworks related to content delivery security, such as OWASP Top 10, PCI DSS, and ISO 27001.
• Proficiency in scripting and programming languages (e.g., Python, JavaScr