CSPM Security Expert

Project context

Project Details

• Location: Barcelona or Madrid

• Work mode: Hybrid (1-2 days onsite)

• Start date: ASAP

• Duration: Until end of 2026

• Language(s): English mandatory, Spanish or French are a plus

Project Summary

We are establishing a dedicated information security practice to ensure a coordinated response to growing cybersecurity threats within Public Cloud environments. As part of this strategy, we have decided to replace our existing Cloud Security Posture Management (CSPM) solution. This mission focuses on driving the migration of security policies and the deployment of the new CSPM solution across our entities, through Preparation, Execution, Validation, and Run phases.

Goals and deliverables

Main Responsibilities & Key Activities

• Coordinate with Group Security (GO Security & Product teams) to ensure controls are correctly migrated and that resulting security scoring is accurate

• Coordinate with Cloud product teams and IT stakeholders (GO and entities) to ensure the solution's operational usability

• Migrate the existing scope covering all Azure and AWS accounts across entities

• Provide technical reference and subject-matter expertise related to the CSPM solution

• Contribute to the design of operational target processes for run-mode deployment (including onboarding of new public cloud accounts) to ensure adequate risk coverage

• Produce comprehensive documentation covering operational processes and transition to run mode

• Provide advisory support for technical decision-making related to CSPM

• Identify and structure requirements necessary to build and operate an effective CSPM service

• Interpret our security requirements and ensure their coverage through the selected CSPM solution

Deliverables

• Definition of security controls and associated measurements

• Documentation of CSPM policies aligned with our security controls and agreed standards (NIST, CIS Benchmarks, ISO/IEC 27017, Cloud Security Alliance, etc.)

• CSPM compliance dashboards

• Detailed deployment plan and timeline

• Documented and implemented operational processes

• Formalized transition to run mode

All deliverables must be produced and presented in English.

Mandatory Experience Required

• Minimum of 5 years of professional expertise in technical DevOps, security, and public cloud environments

• Demonstrated involvement in CSPM or similar cloud security services

• Proven expertise in technical DevOps, security, and cloud environments, including CSPM implementation and operation

• Strong proficiency in public cloud platforms (Azure and AWS)

• Advanced understanding of cloud security controls and industry frameworks (CIS, NIST)

• Ability to structure, document, and operationalize security processes within complex cloud ecosystems