Cybersecurity Engineer

At Kantox, we are actively looking for a talented Cybersecurity Engineer to join security team. This pivotal role will entail a range of responsibilities, primarily focused on managing vulnerabilities within our systems and configuring essential security tools, which prominently include our Security Information and Event Management (SIEM) platform. The Cybersecurity Engineer will play a crucial part in our defense strategy by responding to security alerts in a timely manner and implementing various measures aimed at bolstering our overall cybersecurity posture through a series of technical actions and interventions.

In this position, the ideal candidate will not only be tasked with the immediate technical responsibilities but will also have the opportunity to collaborate closely with our Chief Information Security Officer (CISO). This collaboration is vital to ensure that our cybersecurity strategies are not only effective but also continuously evolving to meet the challenges posed by an ever-changing threat landscape. The successful candidate will be expected to bring their expertise to the table, contributing to the development and refinement of our security protocols and practices.

The Kantox Engineering Manifesto

Kantox is a team sport. Our engineering culture is devoid of egos yet we take great pride in our work. We believe in constructively challenging each other pushing our knowledge, code, processes to the absolute limit.

About the team

You will engage in a close and collaborative effort with the Chief Information Security Officer (CISO) as well as the Engineering team. This Engineering team is made up of skilled developers and infrastructure engineers who work together to ensure the robustness of our systems. The primary goal of this collaboration is to enhance and elevate our overall security levels, making sure that we are well-equipped to handle any potential threats and vulnerabilities that may arise. Through this teamwork, we aim to create a more secure environment for our operations and safeguard our valuable data and resources.

Your future role at Kantox

We are looking for a highly skilled and motivated Cybersecurity Engineer to join our team. The ideal candidate will have at least 2 to 3 years of experience in operational cybersecurity roles and will manage the technical aspects of our cybersecurity infrastructure, emphasizing vulnerability management and alert response. This role is vital for maintaining the security and resilience of our systems against ever-evolving threats.

Additionally, the candidate will be responsible for configuring our security tools, such as our SIEM, analyzing all alerts, and challenging tools that have been identified over time. They will also need to follow the fixing process and demonstrate qualifications and autonomy in their work.

What you will do

• Vulnerability Management
• Conduct regular vulnerability assessments using advanced tools and techniques, ensuring consistency in the process.
• Analyze assessment results to identify, prioritize, and remediate vulnerabilities, with a strong understanding of the kill chain and the MITRE ATT&CK matrix.
• Develop and maintain a vulnerability management process to ensure continuous improvement.
• Collaborate with cross-functional teams to address identified vulnerabilities in a timely manner.
• Alert Treatment
• Monitor security alerts from various sources, including SIEM platforms, intrusion detection systems, and endpoint protection tools.
• Establish, oversee, and enhance alert criteria and notifications to ensure consistency in alert definitions.
• Analyze, investigate, and respond to security alerts to mitigate risks effectively
• Develop and implement alert-handling playbooks to streamline incident response.
• Maintain detailed documentation of alerts, actions taken, and lessons learned.
• Collaboration and Communication
• Work closely with IT and development teams to implement security best practices.
• Provide expert guidance and recommendations for enhancing the security posture of systems and applications.
• Communicate findings and progress to management and stakeholders in a clear and concise manner, utilizing strong writing and simplification skills to explain cybersecurity matters to non-technical audiences.
• Continuous Improvement
• Stay updated with the latest cybersecurity trends, tools, and threat intelligence.
• Propose and implement new technologies or processes to enhance overall security.
• Participate in post-incident reviews to identify opportunities for improvement, constantly challenging existing processes to foster a culture of learning and growth.

Who you are

Must have

• With 3 years of professional experience as a Cybersecurity Engineer, Analyst, or in a similar role, you bring demonstrated expertise in vulnerability management and/or security response processes.
• You have hands-on experience in implementing and configuring vulnerability detection tools, with a proven track record of continuously enhancing their effectiveness to meet evolving security needs.
• You are proficient in working with SIEM tools, focusing on their configuration and automation to streamline alert management. Your approach emphasizes improving team visibility while simultaneously reducing the overall workload for managing alerts.

Nice to have

• With a strong technical background and a keen interest in technology, you possess the ability to develop scripts in Python and utilize APIs to integrate various security tools into a coherent ecosystem.
• You thrive in dynamic environments where collaboration and innovation are key. Your ability to translate technical challenges into actionable solutions sets you apart.
• A strong believer in proactive security, you are always looking for ways to stay ahead of emerging threats while supporting a small team in achieving operational efficiency.
• Experience with agile methodologies and collaboration tools like Jira and Confluence.
• Strong team player with the ability to communicate effectively across multiple teams and stakeholders, both internal and external.
• Adaptable to dynamic environments, committed to continual improvement, and quick to embrace change and adopt new technologies
• Fluent in English

Our culture

• An environment of innovation, accountability, and constructive feedback
• A diverse and multicultural team of over 40 different nationalities
• Grow your role and build your career with our learning and development opportunities.
• A collaborative and inclusive culture of sharing and teamwork. Build connections for life.
• Hybrid working and flexible hours so you can work when and where you feel best
• Some testimonials: “The culture and the people at Kantox make me want to recommend Kantox as a place to work. There is a good balance between learning and growing and support from fellow team members. I feel like the people are very welcoming and make Kantox an easy place to feel at home."

What we offer

• Competitive salary 💰
• Sponsored learning budget
• Free private health insurance
• Free Spanish, English, French and Catalan lessons
• Relocation package if needed
• Flexible working hours + short Fridays
• Hybrid work model
• 29 days of annual vacations🌴
• Gym discounts and free sports activities 💪
• Restaurant Ticket with monthly credit and regular cross-team lunches
• Fresh fruit and unlimited coffee 🍇☕️
• Beautiful office with incredible 360-degree views of Barcelona ☀️

About Kantox

Kantox is a leading fintech company developing sophisticated Currency Management Automation software solutions that help companies to automate their foreign exchange processes and leverage currencies for growth.

We are a 200-person strong team, split between London and Barcelona. So far, we’ve raised over €30 million and became profitable in 2018. Thanks to our clients, we continue to grow at a fast pace. Clients in 75 countries have already exchanged more than USD $18 billion with us!

In October 2022, BNP Paribas signed an agreement for the acquisition of Kantox. Kantox will continue to operate as an independent company, now with the experience and market power of BNP Paribas behind it. The acquisition is subject to regulatory approvals and is expected to be completed in the coming months.

Our Commitment to Diversity, Equity & Inclusion

Kantox is deeply committed to diversity, equity and inclusion both in our hiring practices and in our experiences as a Kantox employee.

We’re proud to be an equal opportunity employer, and encourage all applicants regardless of race, religion, or belief (if any), colour, nationality, ethnic or national origin, gender, gender identity, pregnancy and maternity, sexual orientation, age, marital and civil partnership status, or disability status.