The Security Engineer is responsible for designing, implementing, and managing security technologies across the organization, ensuring the protection of systems and data. The role has global coverage, supporting and safeguarding IT operations in all offices worldwide, and driving the adoption of best practices in security, monitoring, and compliance.
Administer, configure, and monitor Cisco FirePower, Cisco Meraki, Check Point firewalls and Azure Firewall, ensuring optimal performance and security.
Support and maintain Cisco Secure Access Service Edge (SASE) infrastructure for secure remote and cloud access across all regions.
Collaborate with the Security Operations Center (SOC) team to ensure effective integration, monitoring, and global incident response.
Manage SIEM platforms (MS Sentinel and other third-party tools).
Conduct proactive security monitoring, incident investigation, and remediation across worldwide offices.
Plan, coordinate, and execute regular penetration testing and vulnerability assessments, addressing findings with local and global IT teams.
Ensure systems and processes align with ISO 27001 and other international security frameworks.
Develop and maintain security policies, standards, and procedures consistently across all offices.
Partner with IT infrastructure, cloud, and application teams in Barcelona and globally to embed security best practices.
Stay current with evolving security threats, tools, and practices, and recommend improvements to strengthen the organization’s global security posture.
Location: Based in Barcelona, with responsibility for supporting all offices worldwide.
Minimum 4–5 years of experience in IT security engineering, with hands-on experience in enterprise or multinational environments.
Strong expertise in Cisco FirePower, Check Point firewall, and Azure Firewall administration.
Knowledge of Cisco SASE solutions for secure cloud and remote access.
Experience with SOC integration, SIEM platforms, and incident response workflows.
Proven ability to conduct penetration testing, vulnerability assessments, and remediation.
Familiarity with ISO 27001 and other global security/compliance standards.
Strong analytical skills with the ability to diagnose complex security issues and recommend effective solutions.
Strong written and verbal communication skills to interact with global teams and present security findings.
Certifications such as Cisco Security (CCNP Security, CCIE Security), Check Point Certified Security Expert (CCSE), Azure Security certification, ISO 27001 Lead Implementer/Auditor, or equivalent are preferred.
Excellent communication skills and high drive;
Sense of responsibility and initiative;
Ability to work autonomously;
Resistance to stress and time-pressure;
Excellent interpersonal skills and customer orientation;
Agile and flexible mindset, reactive to requests;
Excellent organizational skills and attention to detail;
Ability to interact with colleagues of diverse cultures; respect for diversity;
Full professional proficiency in Office 365 is expected;
Full professional proficiency in spoken and written English is required; knowledge of other
languages is an asset;
Spanish national, EU national, or holder of a valid Spanish work permit.
The MKS PAMP GROUP is an industrial and trading services group specialising in all aspects of the precious metals business. This family company was established over 60 years ago and is now an innovative global business serving precious metals producers, users and traders worldwide.
This leading integrated precious metals group comprises four major brands: MKS, PAMP, MMTC PAMP and MTB, employing over 650 people. The group has a local presence in key precious metal markets, through 2 refineries and mints and 14 offices.
The group also prides itself on its excellence in corporate and social responsibility, its leading role in developing an ethical and transparent value chain and constant innovation in its products and services.
