HubMub
-
Adevinta

Security Engineer Specialist

Adevinta
Spain ยท Full-time ยท Entry
Job Description

๐Ÿš€ Your Mission

We're looking for a Security Engineer to elevate the security posture of our marketplace while keeping things pragmatic, developer-friendly, and aligned with business goals.

This is a hands-on, technically strong individual contributor role. You'll be the local security expert, the person engineers trust when they need clarity, and the bridge to our Central Security team.

You'll work across Security Operations (detection, response, monitoring) and Security Engineering (AppSec, CloudSec, DevSecOps) โ€” owning outcomes, not just tasks.

What You'll Be Doing

๐Ÿ”’ Strengthen our technical security

  • Investigate security alerts and support incident response activities with the Central Security Operations team.
  • Monitor signals through our SIEM and security monitoring tools, detect anomalies, and refine detection rules based on evolving threats.
  • Dive into logs, IAM configurations, cloud security posture findings, vulnerabilities, and architecture to assess risk and propose clear, actionable remediation.

๐Ÿ›ก๏ธ Own vulnerability management

  • Act as the marketplace owner for vulnerability intake, prioritization, and follow-up โ€” tracking SLAs and driving accountability.
  • Work closely with Engineering and Platform teams to ensure timely remediation, mitigation, or informed risk acceptance with clear documentation.

๐Ÿ› ๏ธ Own product & application security

  • Lead threat modelling sessions for new features and architectural changes โ€” not just "lightweight" support, but structured analysis that shapes design decisions.
  • Promote secure coding practices and help developers understand root causes of issues โ€” not just patches.
  • Identify opportunities to improve developer experience through better security tooling (SAST, SCA, secrets scanning) and CI/CD pipeline integration.

โ˜ Secure our cloud environment

  • Partner with Platform Engineering to review and harden AWS configurations, IAM policies, and infrastructure-as-code.
  • Work with CSPM/CNAPP tooling to triage findings, reduce noise, and drive meaningful risk reduction.
  • Contribute to container security, Kubernetes hardening, and runtime protection where applicable.

๐Ÿšจ Act with confidence in incidents

  • Be the first local responder for security incidents impacting the marketplace.
  • Support containment, forensic evidence collection, communication, and coordination with the Central Security team.

๐ŸŒ Be the connector

  • Be the go-to person for everyday security questions across engineering, platform, and product teams.
  • Translate technical risks into business impacts โ€” helping stakeholders make informed decisions.
  • Work closely with the Central Security Operations, Security Engineering, and Security Assurance teams.

๐Ÿ“Š Drive measurable outcomes

  • Track and report on security KPIs: vulnerability SLA adherence, mean-time-to-remediate, coverage metrics.
  • Contribute to risk reporting for leadership โ€” surfacing trends, blockers, and wins.

๐Ÿ“ข Keep us aligned and aware

  • Ensure the marketplace follows security standards, policies, and best practices.
  • Promote and track security awareness activities and mandatory training.

What We're Looking For

  • 5+ years of experience in Security Engineering, Security Operations, or a related technical security role.

Solid, Hands-on Knowledge Of

  • Application security: OWASP Top 10, secure SDLC, code review, SAST/DAST/SCA tooling
  • Cloud security (AWS preferred): IAM, Security Hub, GuardDuty, CloudTrail, network security groups, CSPM/CNAPP tools
  • Vulnerability management lifecycle and prioritization frameworks (CVSS, EPSS, asset criticality)
  • Identity & access management principles and common attack patterns
  • Logging, detection engineering, and incident response fundamentals
  • Experience with SIEM platforms (e.g., Sentinel, Splunk, Elastic) and SOC/IR workflows.
  • Comfortable reading and reviewing code (Python, JavaScript/TypeScript, or similar).
  • Experience leading or facilitating threat modelling sessions (STRIDE, attack trees, or similar).
  • Strong communication skills โ€” able to simplify complex issues and influence without authority.
  • Fluent English required.

โœจ Nice to have

  • Experience with container security (Docker, Kubernetes, runtime protection).
  • Familiarity with IaC security scanning.
  • Security certifications (CISSP, GSEC, AWS Security Specialty, CKS, or similar).
  • Experience working in large, distributed, multi-team product organizations.

๐Ÿ’– Why you'll love it here

  • You'll work directly with local engineering teams who ship real product impact.
  • You'll collaborate with highly specialized Central Security teams โ€” learning from experts in every domain.
  • You'll get the perfect mix of deep technical work + practical influence, without people management responsibilities.
  • You'll have room to innovate; automation, tooling, creative problem-solving โ€” it's all welcome.
  • You'll join a company that truly values security and engineering excellence.

Key Skills

Ranked by relevance

aws incident response kubernetes cloud siem network security cloud security python docker splunk cissp owasp cicd sla
Login to Apply
๐Ÿ‡ช๐Ÿ‡ธ

Country Guide

Spain

Strong city options with excellent lifestyle

Posted
Feb 11, 2026
Type
Full-time
Level
Entry
Location
Barcelona
Company
Adevinta

Industries

Internet Marketplace Platforms

Categories

Information Technology

Related Jobs

3 roles aligned with this opportunity

View all jobs
View Job Details
Jobgether
Related

Infrastructure Engineer

2026-05-27

Full-time
Not Applicable
Brazil
Internet Marketplace Platforms
Information Technology
View Job Details
Freenow
Related

Backend Engineer (m/f/d)

2026-05-25

Full-time
Mid-Senior
Spain
Internet Marketplace Platforms
Engineering
View Job Details
Jobgether
Related

Software Engineer (Golang Developer)

2026-05-24

Full-time
Not Applicable
India
Internet Marketplace Platforms
Engineering