Senior Security Engineer - Full remote in Spain
Auctane · Barcelona, ES; Madrid, ES; Mallorca, ES; Sevilla, ES; Valencia, ES
RemoteNew
senior
security engineer
Apply on Auctane →
About us
At Auctane, we are united by a passion to help businesses deliver — whatever their size, wherever they are, and however they operate. We make it possible for businesses to meet the ever-changing requirements of their industry and customer expectations. Auctane products enable hundreds of thousands of businesses to annually mail and ship billions of items — over $200 billion worth — to recipients around the globe.
The Auctane family of mailing and shipping software products includes ShipStation, Stamps.com, ShipStation API, Metapack, GlobalPost, and Packlink. Our partners include Amazon, UPS, USPS, eBay, BigCommerce, Shopify, WooCommerce, and Walmart.
Our values
Win as One. Delight Customers. Deliver Great Outcomes.
About the role
The focus of this role is to bolster Auctane's global engineering and operations within the Information Security Group. This position reports directly to the CISO and entails the leadership of several security programs within the engineering and operations teams.
The successful candidate will be instrumental in defining and developing the technology and processes governing cybersecurity practices to secure Auctane's global infrastructure. The role will specifically concentrate on securing the Enterprise and Cloud Infrastructures, alongside managing security operations responsibilities. This critical role requires a successful candidate to be a key contributor in establishing and evolving the technology and processes that define Auctane's global cybersecurity practices. The primary focus of this position is to secure the Enterprise and Cloud Infrastructures while also managing core security operations.
The Infosec group operates as part of the broader R&D Tech function, which utilizes modern architectural patterns and technologies, including AI, at scale and pace.
This is a full remote position based in Spain with 10% international travel requirements.
About the team
We have a flat and open engineering culture where diverse opinions and perspectives are valued, data and evidence beats opinion and hierarchy, backed by honest and frank discussions. We passionately believe in forming autonomous, cross functional teams who are empowered to deliver our ambitious strategy. Our engineering culture is characterized by its flat and open structure, where diverse opinions and perspectives are highly valued. Decisions are driven by data and evidence, superseding opinion and hierarchy, and are supported by candid and transparent discussions. We are strong advocates for the formation of autonomous, cross-functional teams who are fully empowered to execute our ambitious strategy. We strongly support cross-collaboration and mission driven autonomous teams that are given full authority to implement our ambitious strategy. Our ambitious strategy is implemented by autonomous, mission-driven teams that are fully empowered to act and strongly encouraged to cross-collaborate.
What will you be doing?
Review and enrich playbooks and see opportunities for automation efficiencies in our Security detection and response capabilities.
Liaising with the Engineering teams on incident response, vulnerability management and remediation actions
Responsible for providing technical expertise in the support of security incidents using a plethora of leading security tools, coupled with continuous learning and training
Working with AWS & GCP Cloud-native security tooling such as GuardDuty, Security Hub, GCP Security Command Center to ensure a level of protection & monitoring of threats in Auctane Public Cloud environments.
Following up on regular security reviews, vulnerability, risk assessments and audits utilising our CSMP tool Wiz and Endpoint vulnerability tool Crowdstrike.
Building relationships with all staff to promote “Security by Design” throughout the Engineering Teams and wider business.
Being part of the internal Infosec / cyber security incident process - investigate suspected attacks and help manage security incidents, including providing post-mortem analysis, identify causes, develop solutions and preventive measures
Responding swiftly to new and emerging security threats and vulnerabilities, investigate suspected attacks and be an integral part of the Information security incident process
Learning and training, to enhance knowledge of Security Orchestration and Automation.
What are we looking for?
Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related technical field
6+ years of progressive experience in cybersecurity, with at least 3-5 years in leading large scale cyber security implementations
Experience defining and leading several cyber security programs for large scale organizations
Advanced level experience at least in one or two security domains within the Enterprise and Cloud Infrastructures to develop threat detections and mitigation strategies
Experience leading projects and programs while defining the roadmap and milestones, and communicating with to technical and non-technical stakeholders while advising senior management
Experience leading other engineers and analysts while collaborating with the external team members
Able to balance the demands of delivering high quality and demanding timescales.
Relevant industry certifications (e.g. CISSP, CISM, CRISC, AWS Security, GCP Security)
What will make you stand out?
Expert-level knowledge of AWS, Azure, and/or GCP security
Expertise in vulnerability and risk management across public cloud and enterprise environments
Expertise in leading advanced threats detection and prevention programs in a cross-functional environment
Expertise in developing security patterns with architectural recommendations
Advanced experience in software development practices, automation with basic knowledge of AI
The tech stack
AWS, GCP, SaaS, and Enterprise
Artificial Intelligence Solutions (Gemini, Claude, internal)
CNAPP, DSPM, and Cloud Security Solutions
Application Security Technologies (DAST, SAST, SCA, ASM)
Email Security Technologies
SIEM Solutions and Detection Technologies
Google Workspace
Vulnerability Management Solutions
Application Security
Python, PowerShell, Bash
What do we offer?
💸 Clear and transparent compensation plan.
We will discuss the indicated range with you in the first recruiting call to ensure that we are on the same page.
💰 Flexible salary benefits Save on personal income tax with Cobee for expenses like transport, restaurants, and kindergarten.
🩺 Private health insurance Free for all employees via Cigna , plus we cover 50% for your family members .
🌅 Generous time off Enjoy 26 days of holiday per year (23 base days + your 🎂 birthday off , Christmas Eve, and New Year’s Eve).
💻 Your gear, your choice Whether you prefer Mac or Windows , or need an extra screen, we’ll make sure you’re set up for success from day one.
🗓️ Annual Salary Review We’re committed to recognizing your professional growth. Every year, we review salaries to reflect your individual development, achievements, and impact on our business success.
📙 Grow your skills We offer up to €2,000/year in training (certifications, conferences, workshops) to boost your growth—both technical and personal.
📺 Learning resources Access internal and external training , including platforms like LinkedIn Learning , completely free.
🧘♂️ Holistic wellness program Includes access to Wellhub, Curalinc (psychological support), Rocketlawyer (legal advice), and regular health webinars & challenges.
😊 Volunteer day Take one day off a year to volunteer and give back. Bonus points for sharing pics on Slack!
👩⚕️ Free therapy vouchers Because your mental health matters.
🏐 Health & wellness support Get up to €55/month to cover your gym or fitness classes (yoga, boxing, pilates, etc.).
🗺️ Weekly language classes Improve or learn a new language (English, Spanish, French, Italian, or German) in small groups with expert instructors—on us!
🏥 Time for health Get 8 hours per year for personal medical appointments and 10 hours per year to support your family’s medical needs.
⚖️ Work-life balance We’re flexible and people-first. We know life happens, and we aim to make work work for you.
💜 Inclusive, upbeat culture No suits here—just a welcoming, casual, and respectful space where diversity is celebrated , and you can be your full self.
🌍 A global, multicultural team We’re made up of 20+ nationalities , speaking 10+ languages . All communication is in English, so everyone’s included.
📦 Packlink Pro discount Enjoy 99% off your personal shipments using our platform.
🔗 Referral bonuses Know someone amazing? Earn €1K–€3K when you refer candidates we hire—depending on the role.
🏢 Central Madrid office When you want a change of scenery, drop by our office in the heart of Madrid— free snacks and drinks included !
🏟️ Team events We work hard and play hard with regular team-building activities and meetups.
Posted 2026-06-30