Director, Security Engineering - Remote in Spain

 

About the role

Reporting directly to the Chief Information Security Officer (CISO), the Director of Security Engineering holds a critical leadership position within the Information Security Group, with a specific mandate to fortify Auctane's global engineering and operational capabilities. This role necessitates the leadership and oversight of multiple security programs spanning the engineering and operations teams.

The successful candidate will be instrumental in defining and developing the technology and processes governing cybersecurity practices to secure Auctane's global infrastructure. The role will specifically concentrate on securing the Enterprise and Cloud Infrastructures, alongside managing security architecture, engineering, and operations responsibilities. This critical role requires a successful candidate to define and lead the technology and processes that define Auctane's global cybersecurity practices. The primary focus of this position is to secure the Enterprise and Cloud Infrastructures while also managing core security operations.

The Infosec group operates as part of the broader R&D Tech function, which utilizes modern architectural patterns and technologies, including AI, at scale and pace. This remote role, based in Spain, requires the successful candidate to work during hours that overlap with the US-based organization.

Travel Requirements: Up to 10% travel required.

About the team

We have a flat and open engineering culture where diverse opinions and perspectives are valued, data and evidence beats opinion and hierarchy, backed by honest and frank discussions. We passionately believe in forming autonomous, cross functional teams who are empowered to deliver our ambitious strategy. Our engineering culture is characterized by its flat and open structure, where diverse opinions and perspectives are highly valued. Decisions are driven by data and evidence, superseding opinion and hierarchy, and are supported by candid and transparent discussions. We are strong advocates for the formation of autonomous, cross-functional teams who are fully empowered to execute our ambitious strategy. We strongly support cross-collaboration and mission driven autonomous teams that are given full authority to implement our ambitious strategy. Our ambitious strategy is implemented by autonomous, mission-driven teams that are fully empowered to act and strongly encouraged to cross-collaborate.

What will you be doing?

• Develop and implement a comprehensive security engineering roadmap, ensuring alignment with business objectives and risk appetite
• Oversee the design, review, and implementation of security architecture across network, infrastructure, and cloud environments
• Hire, mentor, and manage a high-performing team of security architects and engineers, fostering a culture of excellence and accountability
• Identify security gaps and the necessity of security tools, while leading the requirements, evaluation and adoption of security tools to build automation and efficiency
• Conduct threat modeling and vulnerability management to prioritize security investments and address potential breaches
• Collaborate with IT, Product, Engineering, Legal, and Compliance teams to promote “Secure by Design” practices across the organization
• Building relationships with all staff to promote “Security by Design” throughout the Engineering Teams and wider business

What are we looking for?

• Master’s degree in Cybersecurity, Information Technology, Computer Science, or a related technical field 12+ years of progressive experience in cybersecurity, with at least 3-5 years in a leadership capacity, leading large scale cyber security implementations
• Experience leading large scale organization and security programs by identifying opportunities and influencing the larger organization to uplift security
• Expert level experience in multiple security domains within the Enterprise and Cloud Infrastructures to develop threat detections and mitigation strategies
• Advanced level experience leading large scale cross-functional programs while defining the strategy, roadmap and milestones, while managing technical and non-technical stakeholders
• Experience leading senior staff, influencing and collaborating with the external team members, while advising senior management on risk management
• Able to balance the demands of delivering high quality and demanding timescales
• Relevant industry certifications (e.g. CISSP, CISM, CRISC, AWS Security, GCP Security)

What will make you stand out?

• Expert-level knowledge of AWS, Azure, and/or GCP security
• Expertise in vulnerability and risk management across public cloud and enterprise environments
• Expertise in leading advanced threats detection and prevention programs in a cross-functional environment
• Expertise in developing security patterns with architectural recommendations
• Advanced experience in software development practices, automation with basic knowledge of AI

The tech stack

• AWS, GCP, SaaS, and Enterprise Artificial Intelligence Solutions (Gemini, Claude, internal)
• CNAPP, DSPM, and Cloud Security Solutions Application Security Technologies (DAST, SAST, SCA, ASM)
• Email Security Technologies
• SIEM Solutions and Detection Technologies 
• Google Workspace
• Vulnerability Management Solutions
• Application Security
• Python, PowerShell, Bash

What do we offer?

• 💸 Clear and transparent compensation plan. The salary range goes from 95,000€ to 102,000€ gross per year + Bonus. We will discuss the indicated range with you in the first recruiting call to ensure that we are on the same page.
• 💰 Flexible salary benefits
  Save on personal income tax with Cobee for expenses like transport, restaurants, and kindergarten.
• 🩺 Private health insurance
  Free for all employees via Cigna, plus we cover 50% for your family members.
• 🌅 Generous time off
  Enjoy 26 days of holiday per year (23 base days + your 🎂 birthday off, Christmas Eve, and New Year’s Eve).
• 💻 Your gear, your choice
  Whether you prefer Mac or Windows, or need an extra screen, we’ll make sure you’re set up for success from day one.
• 🗓️ Annual Salary Review
  We’re committed to recognizing your professional growth. Every year, we review salaries to reflect your individual development, achievements, and impact on our business success.
• 📙 Grow your skills
  We offer up to €800/year in training (certifications, conferences, workshops) to boost your growth—both technical and personal.
• 📺 Learning resources
  Access internal and external training, including platforms like LinkedIn Learning, completely free.
• 🧘‍♂️ Holistic wellness program
  Includes access to Wellhub, Curalinc (psychological support), Rocketlawyer (legal advice), and regular health webinars & challenges.
• 😊 Volunteer day
  Take one day off a year to volunteer and give back. Bonus points for sharing pics on Slack!
• 👩‍⚕️ Free therapy vouchers
  Because your mental health matters.
• 🏐 Health & wellness support
  Get up to €55/month to cover your gym or fitness classes (yoga, boxing, pilates, etc.).
• 🗺️ Weekly language classes
  Improve or learn a new language (English, Spanish, French, Italian, or German) in small groups with expert instructors—on us!
• 🏥 Time for health
  Get 8 hours per year for personal medical appointments and 10 hours per year to support your family’s medical needs.
• ⚖️ Work-life balance
  We’re flexible and people-first. We know life happens, and we aim to make work work for you.
• 💜 Inclusive, upbeat culture
  No suits here—just a welcoming, casual, and respectful space where diversity is celebrated, and you can be your full self.
• 🌍 A global, multicultural team
  We’re made up of 20+ nationalities, speaking 10+ languages. All communication is in English, so everyone’s included.
• 📦 Packlink Pro discount
  Enjoy 99% off your personal shipments using our platform.
• 🔗 Referral bonuses
  Know someone amazing? Earn €1K–€3K when you refer candidates we hire—depending on the role.
• 🏢 Central Madrid office
  When you want a change of scenery, drop by our office in the heart of Madrid—free snacks and drinks included!
• 🏟️ Team events
  We work hard and play hard with regular team-building activities and meetups.
•