At Scud Security, we're not just another cybersecurity company; we are at the forefront of cyber innovation, constantly redefining digital protection. We are a collective of passionate experts committed to securing the digital world, and we’re looking for individuals who share our drive.  

We are looking for someone with a profound understanding of Linux and networking, who is passionate about cybersecurity and ethical hacking. If you possess a deep knowledge of networks, a relentless curiosity, and a drive to tackle complex challenges, we encourage you to consider a career with us.  

Please do not apply solely for the higher salary of a Cybersecurity Analyst compared to other IT positions. While we understand that your cybersecurity knowledge may not be extensive, we are committed to developing individuals who are truly passionate about cybersecurity. 

Required Qualifications: 

• Proficiency in using and managing Linux operating systems. 
• Experience with shell scripting, system administration, and troubleshooting in a Linux environment. 
• In-depth understanding of networking concepts, protocols, and technologies. 
• Excellent written communication skills for creating detailed security reports, documentation, and policies. 
• Strong command of the English language, both written and verbal. 
• Quick Learner 
• Proven interest in cybesecurity and ethical hacking.  
• Languages: Proficiency in English and Spanish is required; knowledge of Catalan is a plus. 

Preferred Qualifications: 

• Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent work experience). 
• Experience with configuring and managing network devices such as routers, switches, and firewalls. 
• Familiarity with security tools and technologies such as SIEM (Security Information and Event Management), firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint security. 
• Proven experience (2+ years) in cybersecurity or IT security roles. 
• Strong knowledge of common cyber threats, attack vectors, and security best practices. 
• Solid understanding of networking concepts, TCP/IP, and related protocols. 
• Experience with regulatory standards and frameworks (e.g., NIST, ISO 27001, GDPR, HIPAA). 
• Security certifications such as CISSP, CEH, CompTIA Security+, or equivalent. 
• Familiarity with scripting languages (e.g., Python, PowerShell) for automation and incident response. 
• Experience with vulnerability scanning tools (e.g., Nessus, Qualys) and penetration testing.  
• Knowledge of IT service management tools (e.g., ServiceNow, Jira). 

Key Skills: 

• Strong analytical and problem-solving skills. 
• Excellent written and verbal communication skills. 
• Ability to work under pressure in a fast-paced, dynamic environment. 
• Strong attention to detail and organizational skills. 

Key Responsibilities: 

Security Monitoring and Incident Response: 

• Continuously monitor networks, servers, and systems for signs of vulnerabilities, threats, and breaches using security tools (e.g., SIEM systems).
• Respond to and investigate security incidents, conducting root cause analysis and providing recommendations for remediation. 
• Assist in the development and implementation of incident response plans and ensure timely reporting of security incidents. 

Vulnerability Management: 

• Conduct regular vulnerability assessments and penetration testing to identify potential security weaknesses. 
• Collaborate with IT teams to apply patches and updates to mitigate security risks in operating systems, software, and applications. 

Risk Assessment & Mitigation: 

• Perform security risk assessments, identify gaps, and provide actionable recommendations to mitigate threats. 
• Evaluate and recommend security tools, technologies, and processes to enhance the organization’s security posture. 

Security Policy and Compliance: 

• Ensure compliance with security policies, standards, and regulatory requirements (e.g., GDPR, HIPAA, PCI-DSS). 
• Assist in the development and maintenance of security policies, procedures, and documentation. 

Security Awareness and Training: 

• Provide security training to staff, educating them on best practices and threat awareness. 
• Assist in developing and distributing security awareness content to help employees identify phishing, malware, and other social engineering attacks. 

Collaboration and Reporting: 

• Work closely with other IT teams to integrate security solutions into business processes and infrastructure. 
• Prepare regular security reports for management, highlighting security incidents, risk assessments, and recommended improvements. 

What We Offer: 

• Competitive salary and benefits package according to the seniority of the candidates 
• Opportunities for professional development and certifications. 
• Collaborative and supportive work environment.