Security Intern
Location: Barcelona, Spain Type: Part Time Min. Experience: Student (College)

 

**TO APPLY FOR THIS POSITION YOU MUST BE ELIGIBLE TO SIGN AN INTERNSHIP AGREEMENT VIA UNIVERSITY**

Candidate Profile

We are looking for a student with experience in auditing web applications and ethical hacking projects, willing to develop his/her career in computer security.

Responsibilities

Having the mission of supervising the network and infrastructure security, being corporate network or projects’ infrastructures, main responsibilities will include, but not be limited to:

  • Analyzing potential security incidents. As a second level of security monitoring, researching any suspicious security event and investigating its source.
  • Providing retro-feedback of the security monitoring rules and the monitoring platforms.
  • Handling the security operations procedure, security incidents response plan, and the internal infrastructure security assessment plan.
  • Collaborating in the projects (design and implementation) for increasing the scope of the security monitoring.
  • Security investigations, security patterns detection, early detection of potential security incidents.
  • Continuous security assessment of our Corporate IT infrastructure, both from the internal and the perimetral point of view.
  • Continuous security assessment of all Scytl applications, Code review and static and dynamic analysis.
  • Automatization of code analysis.
  • Extending the current security assessment process to other geographic locations and networks from other Scytl group Companies.
  • Continuous security assessment of our projects’ infrastructure, including ad-hoc projects and SaaS platforms.
  • Automating the monitoring process and the security tests, integrating them within the IT operations process and networks.

Being open for:

  • researching on security vulnerabilities in infrastructure components.
  • researching on new defensive security mechanisms related to software and infrastructures.
  • participating in the publication and broadcasting (e.g., conference presentations) of the research effort results and contribution of the company in security matters.

Requirements

  • A person with high-interest in developing his/her career in computer security, with a strong security mindset.
  • Computing or Telecommunications Engineer / BSc are preferred; other university studies such as Physics or Mathematics are accepted.
  • Knowledge in IDS / network security monitoring tools (NSM) like Security Onion, Ossec, Snort...,
  • Technological skills to prepare scripts, queries, automatize tests and rules, and integrate with the applications that might require for the required operations.
  • Experience in using infrastructure vulnerability scanners and testing tools (nessus, openvas, nmap, Nexpose, metasploit…).
  • Knowled of security policies and procedures development.
  • Fluent in technical English, spoken and written.

Desired Requirements

  • Previous experience in Security Services firms (advisory or audit).
  • Experience as a security analyst of SaaS platforms.
  • Specific experience using Splunk and Splunk Forwarder.
  • Experience in System Administration and Web Application Firewalls.
  • Experience in other Security fields such as web application, forensic analysis, remote access systems, and strong authentication.
  • Knowledge of methodologies and security standards such as OWASP, OSSTMM, CWE/SANS, ISO27000...
  • Other languages are also an advantage.

Job Advantages

  • Company with +10 years in the international software market with global multinationals as investors in the company and partners (SAP, Microsoft, etc.).
  • Highly international working environment and culture.
  • Opportunity to be part of the worldwide leader in its market.
  • Scytl offices are located in Barcelona’s city center. New and modern offices, well located and communicated using public transport (FGC and TMB).
  • Young, learning, proactive, and research-oriented environment with real career development opportunities.