Remote Senior Security Engineer - Madrid

Description:

• As a Senior Security Engineer, you will be responsible for fostering and maintaining a good security posture on our infrastructure, application, and processes.
• You will help other teams deliver customer value on top of Voice by implementing security testing best practices, evangelizing, and mentoring within your team and across the whole of Engineering.
• You will collaborate closely with engineering teams to integrate secure coding practices, automated security testing, and threat modeling early in the software development lifecycle.
• Your role includes developing and implementing security guardrails, ensuring developers and infrastructure teams can self-serve secure frameworks and best practices.
• You will conduct security reviews for new features, services, and infrastructure changes, proactively identifying and mitigating risks before deployment.
• You will design and implement AI-driven security solutions, leveraging machine learning for anomaly detection, threat intelligence, and automated response.
• Your responsibilities will also include developing automation to streamline vulnerability management, compliance reporting, and security operations.
• You will build and maintain security-as-code templates, playbooks, and CI/CD-integrated security controls, enabling developers to securely deploy software without friction.
• You will provide internal tooling and training that empowers teams to manage security risks without needing constant security team intervention.
• You will advocate for a DevSecOps culture by mentoring teams and driving security awareness across the engineering organization.
• You will harden Aircall’s SaaS infrastructure by designing scalable, cloud-native security solutions using AWS, Kubernetes, and Terraform.
• You will strengthen API security and application security by enforcing best practices for authentication, authorization, and secure data handling.
• You will monitor and improve security observability, ensuring visibility across all environments through logs, alerts, and automated threat detection.
• You will own and improve incident detection and response capabilities, ensuring rapid containment and resolution of security threats.

Requirements:

• You must have at least 5+ years of experience in Security involving Public Clouds, preferably AWS.
• A strong development background with experience in secure coding practices is required.
• You should have experience with automation and AI-driven security, including ML-based threat detection and security automation tools.
• Hands-on expertise in DevSecOps, integrating security tools into DevOps workflows (SAST, DAST, IaC scanning, runtime protection) is essential.
• You should have a shift-left and enablement-focused mindset, with a passion for making security a frictionless part of engineering workflows rather than a blocker.
• A self-service mindset is necessary, believing in building security guardrails and automation so developers can self-serve security solutions.
• You should be a problem-solver and automation-first thinker, constantly looking for ways to remove manual work through scripting, AI, or process improvements.
• Strong collaboration and communication skills are required to partner with developers, SREs, and product teams to drive security adoption.
• You should be a security evangelist, proactively educating teams on security risks and best practices through training, workshops, and internal documentation.

Benefits:

• Joining Aircall at this key moment offers growth and opportunities within the company.
• Work-life balance is important at Aircall, ensuring that our people matter.
• The environment is fast-learning, entrepreneurial, and fosters a strong team spirit.
• Aircall boasts a cosmopolitan and multi-cultural mindset with over 45 nationalities represented.
• A competitive salary package and benefits are provided to employees.
• Aircall is committed to diversity, equity, and inclusion, promoting active inclusion within the business to foster a strong sense of belonging for all employees.