CrawlJobs Logo
Adevinta Logo Adevinta · IT - Software Development

Cloud Defensive Security Engineer (Elastic)

Spain, Barcelona · Job Posted April 23, 2026
Apply Position
Job Link Share

Job Description

As a Defensive Security Engineer, you will be part of the Cloud Defense team within Security Operations. Your main objective is to own and evolve our Elastic-based detection and observability platform, enabling 'Defense as a Service' for security and engineering teams across the company. You will combine strong Elastic expertise with solid Infra/DevSecOps practices to elevate our detection capabilities to the next level. We don't expect you to be a deep security expert from day one. What we need is someone strong on Elastic and platform engineering who enjoys working with security engineers, SOC analysts and incident responders, and is happy to grow his security skills on the job. You will be instrumental in ensuring that Adevinta's security strategy covers industry-relevant security standards. The Cloud Defense team is part of the Information Security department where your team will collaborate with other services such as Vulnerability Management, Bug Bounty programs, and SPLC Security among others.

Job Responsibility

  • Redesign, evolve and operate our Elastic stack (Elasticsearch, Kibana, Elastic Security/Observability) as a core part of the Defensive platform
  • Own the ingestion pipelines for security and infrastructure telemetry (e.g. AWS/GCP audit logs, EDR telemetry, OS/syslog from Linux fleets and key application logs from our core products), including Beats/Agents, ingest pipelines and index lifecycle management
  • Pragmatically optimise Elastic for performance, scalability, cost and reliability (index strategy, shard planning, hot/warm/cold, retention policies)
  • Define and maintain standards and templates for indices, data streams, mappings and dashboards
  • Implement and maintain detection content in Elastic (KQL/EQL queries, rules, anomaly jobs) following defense-as-code practices: versioning, code reviews, testing and CI/CD
  • Collaborate with engineering teams, SOC and Incident Response to translate threat scenarios and cloud/runtime risks into Elastic rules, alerts and dashboards
  • Improve detections to reduce false positives and improve signal quality, based on feedback from SOC, IR and product teams
  • Contribute to internal tooling that improves detection engineering (e.g. shared rule templates, test harnesses, linters, rule packaging)
  • Manage Elastic infrastructure, data pipelines, and content deployments using IaC tools (Terraform, CloudFormation) and CI/CD platforms (GitHub Actions, Argo CD)
  • Integrate Elastic with other security and cloud services (e.g. EDR agents, cloud-native security tools, ticketing, notification channels, SOAR) to support end-to-end defensive workflows
  • Support the hardening and security of the Elastic platform (access control, encryption, secrets, network policies, backups and recovery)
  • Treat Elastic as a product: maintain a roadmap, backlog, changelog and documentation for the platform's security capabilities
  • Provide self-service onboarding patterns for product and platform teams (data ingestion blueprints, dashboards, reference queries, runbooks)
  • Partner with Cloud, SRE, Platform and Application teams to ensure the right telemetry is available for runtime security, incident response and troubleshooting
  • Build and maintain simple and clear dashboards that show data coverage, detection health and ingest reliability over time
  • Level up the team's Elastic skills by treating detections as data problems: help colleagues design data models, queries and pipelines that scale, and coach them on performance, cost and reliability trade-offs at our volume

Requirements

  • Strong hands-on experience designing, operating and troubleshooting Elastic deployments in production (on-prem or cloud-managed)
  • Experience building and operating log/telemetry pipelines into Elastic (Filebeat/Metricbeat/other Beats, Elastic Agent, Logstash, ingest pipelines)
  • Proficiency with Kibana: dashboards, visualisations, Lens, saved searches, alerting and spaces
  • Solid understanding of distributed systems basics relevant to Elastic (indexing, sharding, replication, cluster health)
  • Elastic Certified Engineer (or equivalent depth of experience), however certification is a plus
  • Experience with infrastructure-as-code (e.g. Terraform, Ansible, CloudFormation) to deploy and manage infrastructure
  • Experience with CI/CD pipelines (GitHub Actions, Jenkins, etc…) to automate configuration and infrastructure deployments
  • Hands-on experience with Linux systems, containers and Kubernetes (EKS or vanilla deployments)
  • Experience with public cloud environments, preferably AWS and/or GCP (cloud logging, IAM basics, network fundamentals)
  • Good understanding of core security and SOC concepts: logs vs events vs alerts, detections, triage and investigations
  • Be familiar with threat detection concepts (TTPs, attacker behaviours, basic MITRE ATT&CK navigation) and how they map to logs and signals
  • Understanding of common cloud and application security risks (e.g. misconfigurations, credential misuse, suspicious access patterns)
  • Willingness and curiosity to grow security expertise working next to teams of seasoned security professionals
  • 4+ years of experience in a relevant role (e.g. Platform / Observability Engineer, Elastic Engineer, DevOps/Cloud Engineer, Security Engineer working heavily with Elastic)
  • Strong scripting / automation skills in at least one language (e.g. Go, Bash, Python)
  • Strong analytical and problem-solving abilities
  • Excellent communication and documentation skills, ability to work effectively with both engineers and security specialists in a distributed and fast-paced environment

Nice to have

  • Practical experience with Elastic Security or SIEM capabilities (detection rules, timelines, cases, EQL/KQL for threat detection)
  • Hands-on experience integrating Elastic with EDR / runtime security tools (e.g. CrowdStrike) or cloud-native security services
  • Experience with SOAR tools or building automation around alert handling and incident response
  • Prior work in a Cloud Security / Cloud Defense / SecOps team
  • Contributions to open-source projects, security libraries or public talks/blog posts about Elastic, observability or security
  • Relevant certifications like Elastic, Cloud Security, Kubernetes or DevOps related

What we offer

  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • Win together, lose together is one of our key behaviours
  • a collaborative environment with an opportunity to explore your potential and grow
  • a range of locally relevant benefits
Adevinta - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cloud Defensive Security Engineer (Elastic)

8 matching positions

Cloud Defensive Security Engineer

As a Defensive Security Engineer, you will be part of the Cloud Defense team wit...
Location
Location
Spain , Barcelona
Salary
Salary:
Not provided
adevinta.com Logo
Adevinta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands-on experience designing, operating and troubleshooting Elastic deployments in production (on-prem or cloud-managed)
  • Experience building and operating log/telemetry pipelines into Elastic (Filebeat/Metricbeat/other Beats, Elastic Agent, Logstash, ingest pipelines)
  • Proficiency with Kibana: dashboards, visualisations, Lens, saved searches, alerting and spaces
  • Solid understanding of distributed systems basics relevant to Elastic (indexing, sharding, replication, cluster health)
  • Elastic Certified Engineer (or equivalent depth of experience), however certification is a plus
  • Experience with infrastructure-as-code (e.g. Terraform, Ansible, CloudFormation) to deploy and manage infrastructure
  • Experience with CI/CD pipelines (GitHub Actions, Jenkins, etc…) to automate configuration and infrastructure deployments
  • Hands-on experience with Linux systems, containers and Kubernetes (EKS or vanilla deployments)
  • Experience with public cloud environments, preferably AWS and/or GCP (cloud logging, IAM basics, network fundamentals)
  • Good understanding of core security and SOC concepts: logs vs events vs alerts, detections, triage and investigations
Job Responsibility
Job Responsibility
  • Redesign, evolve and operate our Elastic stack (Elasticsearch, Kibana, Elastic Security/Observability) as a core part of the Defensive platform
  • Own the ingestion pipelines for security and infrastructure telemetry (e.g. AWS/GCP audit logs, EDR telemetry, OS/syslog from Linux fleets and key application logs from our core products), including Beats/Agents, ingest pipelines and index lifecycle management
  • Pragmatically optimise Elastic for performance, scalability, cost and reliability (index strategy, shard planning, hot/warm/cold, retention policies)
  • Define and maintain standards and templates for indices, data streams, mappings and dashboards
  • Implement and maintain detection content in Elastic (KQL/EQL queries, rules, anomaly jobs) following defense-as-code practices: versioning, code reviews, testing and CI/CD
  • Collaborate with engineering teams, SOC and Incident Response to translate threat scenarios and cloud/runtime risks into Elastic rules, alerts and dashboards
  • Improve detections to reduce false positives and improve signal quality, based on feedback from SOC, IR and product teams
  • Contribute to internal tooling that improves detection engineering (e.g. shared rule templates, test harnesses, linters, rule packaging)
  • Manage Elastic infrastructure, data pipelines, and content deployments using IaC tools (Terraform, CloudFormation) and CI/CD platforms (GitHub Actions, Argo CD)
  • Integrate Elastic with other security and cloud services (e.g. EDR agents, cloud-native security tools, ticketing, notification channels, SOAR) to support end-to-end defensive workflows
What we offer
What we offer
  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • Fulltime
Read More
Arrow Right

Cloud Defensive Security Engineer

As a Defensive Security Engineer, you will be part of the Cloud Defense team wit...
Location
Location
Spain , Barcelona
Salary
Salary:
Not provided
adevinta.com Logo
Adevinta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands-on experience designing, operating and troubleshooting Elastic deployments in production (on-prem or cloud-managed)
  • Experience building and operating log/telemetry pipelines into Elastic (Filebeat/Metricbeat/other Beats, Elastic Agent, Logstash, ingest pipelines)
  • Proficiency with Kibana: dashboards, visualisations, Lens, saved searches, alerting and spaces
  • Solid understanding of distributed systems basics relevant to Elastic (indexing, sharding, replication, cluster health)
  • Elastic Certified Engineer (or equivalent depth of experience), however certification is a plus
  • Experience with infrastructure-as-code (e.g. Terraform, Ansible, CloudFormation) to deploy and manage infrastructure
  • Experience with CI/CD pipelines (GitHub Actions, Jenkins, etc…) to automate configuration and infrastructure deployments
  • Hands-on experience with Linux systems, containers and Kubernetes (EKS or vanilla deployments)
  • Experience with public cloud environments, preferably AWS and/or GCP (cloud logging, IAM basics, network fundamentals)
  • Good understanding of core security and SOC concepts: logs vs events vs alerts, detections, triage and investigations
Job Responsibility
Job Responsibility
  • Redesign, evolve and operate our Elastic stack (Elasticsearch, Kibana, Elastic Security/Observability) as a core part of the Defensive platform
  • Own the ingestion pipelines for security and infrastructure telemetry (e.g. AWS/GCP audit logs, EDR telemetry, OS/syslog from Linux fleets and key application logs from our core products), including Beats/Agents, ingest pipelines and index lifecycle management
  • Pragmatically optimise Elastic for performance, scalability, cost and reliability (index strategy, shard planning, hot/warm/cold, retention policies)
  • Define and maintain standards and templates for indices, data streams, mappings and dashboards
  • Implement and maintain detection content in Elastic (KQL/EQL queries, rules, anomaly jobs) following defense-as-code practices: versioning, code reviews, testing and CI/CD
  • Collaborate with engineering teams, SOC and Incident Response to translate threat scenarios and cloud/runtime risks into Elastic rules, alerts and dashboards
  • Improve detections to reduce false positives and improve signal quality, based on feedback from SOC, IR and product teams
  • Contribute to internal tooling that improves detection engineering (e.g. shared rule templates, test harnesses, linters, rule packaging)
  • Manage Elastic infrastructure, data pipelines, and content deployments using IaC tools (Terraform, CloudFormation) and CI/CD platforms (GitHub Actions, Argo CD)
  • Integrate Elastic with other security and cloud services (e.g. EDR agents, cloud-native security tools, ticketing, notification channels, SOAR) to support end-to-end defensive workflows
What we offer
What we offer
  • An attractive Base Salary
  • Participation in our Short Term Incentive plan (annual bonus)
  • Work From Anywhere: Enjoy up to 20 days a year of working from anywhere
  • A 24/7 Employee Assistance Program for you and your family
  • Fulltime
Read More
Arrow Right

Security Engineer

We need a technical professional responsible for designing, building, and mainta...
Location
Location
United States , Annapolis Junction
Salary
Salary:
112800.00 - 257000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years of experience administering Elastic Stack, including Elasticsearch, Kibana, Logstash, Beats, or Fleet
  • Experience managing Elasticsearch index lifecycle policies, index templates, and data streams at scale, and building Kibana dashboards, visualizations, and lens-based analytics for security operations
  • Experience with Elastic Security detection rules, alerts, and case management workflows
  • Experience with log ingestion pipeline design, including parsing, enrichment, and normalization across heterogeneous log sources such as network, endpoint, identity, and cloud
  • Experience with Elastic Common Schema (ECS) and mapping non-standard log sources into ECS-compliant fields
  • Experience with ES|QL or EQL for advanced threat hunting and detection-as-code workflows
  • Experience working in a DoD, IC, or federal cybersecurity environment such as SOC, SIEM operations, or defensive cyber
  • Secret clearance
  • HS diploma or GED
Job Responsibility
Job Responsibility
  • Design and deploy firewalls, intrusion detection systems or intrusion prevention systems (IDS/IPS), and encryption protocols
  • Conduct regular penetration tests and security audits to identify and patch system weaknesses
  • Perform Identity and Access Management (IAM), including implementing policies to ensure only authorized users can access sensitive company data
  • Lead or assist in the technical response to security breaches, including digital forensics and damage mitigation
  • Create and enforce company-wide security standards such as password management and data classification
  • Develop relationships quickly and easily with other teams, communicating the complexities of security with a wide variety of audiences, including senior management
  • Manage infrastructure and cybersecurity controls, including enhanced detection and vulnerability capabilities and improved event correlation in large enterprises
  • Lead risk and vulnerability assessments in network, system, and application areas
  • Leverage big data analytics and traditional security event types to identify advanced threats or indicators of compromise
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
  • Fulltime
Read More
Arrow Right

Joint Operations Cyber Analytics Platform Architect

For an organization to transform in today’s digital world, it needs to properly ...
Location
Location
United States , Fort Meade
Salary
Salary:
99000.00 - 225000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in defensive cyber operations, cybersecurity engineering, or security platform architecture
  • 5+ years of experience designing security data pipeline architectures, including log collection, normalization, enrichment and routing
  • 3+ years of experience with SIEM platforms such as Splunk, Elastic Security, Microsoft Sentinel, or Google Chronicle
  • 3+ years of experience working with stream processing and data brokering tools such as Apache Kafka, Logstash, Fluentd, or Cribl
  • Experience with data lake and analytics platforms such as Databricks, Apace Iceberg, or Snowflake
  • Experience architecting detection engineering pipelines, threat hunting workflows, and automated response capabilities and integrating EDR or NDR solutions using tools such as CrowdStrike, Corelight, or Trelix
  • Experience deploying platforms across cloud, on-premises, and disconnected environments using container orchestration such as Kubernetes or Red Hat OpenShift and applying Zero Trust principles and DoD cybersecurity frameworks
  • Secret clearance
  • HS diploma or GED
  • DoD 8140 Certifications such as Security+, CISSP, CASP or CCSP Certification
Job Responsibility
Job Responsibility
  • Lead the design of data architecture solutions for cloud computing, managed services, and service-oriented architectures
  • Resolve routine data architecture-related issues in collaboration with business analysts and technology teams
  • Work with project staff to make decisions and recommendations on future data architecture development
  • Analyze data architecture-related business needs
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right

Solution Architect – Authentication Modernization

Join us as a Solution Architect – Authentication Modernization at Barclays, wher...
Location
Location
India , Pune
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Apply modern software engineering practices and automated delivery tooling
  • Incorporate security principles (defense in depth, blast radius reduction) and resiliency expectations
  • Ensure risk and control alignment with enterprise standards
  • Drive workload placement strategies leveraging cloud elasticity, serverless, containerization
  • Enterprise Architecture Frameworks: TOGAF or equivalent for architecture governance, capability roadmaps and PDLC alignment
  • Domain Expertise: Digital onboarding, authentication modernization and secure mobile journeys
Job Responsibility
Job Responsibility
  • Design and development of solutions as products that can evolve, meeting business requirements that align with modern software engineering practices and automated delivery tooling
  • Targeted design activities that apply an appropriate workload placement strategy and maximise the benefit of cloud capabilities such as elasticity, serverless, containerisation etc
  • Best practice designs incorporating security principles (such as defence in depth and reduction of blast radius) that meet the Bank’s resiliency expectations
  • Solutions that appropriately balance risks and controls to deliver the agreed business and technology value
  • Adoption of standardised solutions where they fit
  • Fault finding and performance issues support to operational support teams, leveraging available tooling
  • Solution design impact assessment in terms of risk, capacity and cost impact, inc. estimation of project change and ongoing run costs
  • Development of the requisite architecture inputs required to comply with the banks governance processes, including design artefacts required for architecture, privacy, security and records management governance processes
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right
New

Catering Assistant

At Jervoise School, part of Taylor Shaw, we believe healthy food fuels young min...
Location
Location
United Kingdom , Birmingham
Salary
Salary:
8312.34 GBP / Year
elior.co.uk Logo
Elior UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A positive, can-do attitude
  • Ability to work as part of a team
  • Good time management and reliability
  • Willingness to learn and support others
Job Responsibility
Job Responsibility
  • Help prepare and serve food to students and staff
  • Support the kitchen team with daily tasks
  • Maintain high standards of cleanliness and food safety
What we offer
What we offer
  • Free, tasty meals
  • Flexible working
  • Plenty of Time to Unwind
  • Leave for life's important moments
  • Give back time - paid volunteering days
  • Room to grow
  • Wellbeing first
  • Financial security - pension schemes and life assurance
  • Exclusive discounts
  • Parttime
Read More
Arrow Right
New

Catering Assistant

At Strand-on-the-Green Infant School, part of Taylor Shaw, we believe healthy fo...
Location
Location
United Kingdom , London
Salary
Salary:
6926.95 GBP / Year
elior.co.uk Logo
Elior UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A positive, can-do attitude
  • Ability to work as part of a team
  • Good time management and reliability
  • Willingness to learn and support others
Job Responsibility
Job Responsibility
  • Help prepare and serve food to students and staff
  • Support the kitchen team with daily tasks
  • Maintain high standards of cleanliness and food safety
What we offer
What we offer
  • Free, tasty meals
  • Flexible working
  • Plenty of Time to Unwind - holidays that match the school calendar
  • Leave for life's important moments
  • paid volunteering days
  • Room to grow - career development and learning opportunities
  • Wellbeing first - mental health support and wellbeing perks
  • Financial security - pension schemes and life assurance
  • Exclusive discounts - save on entertainment, leisure, and even travel
  • Parttime
Read More
Arrow Right
New

Catering Assistant

Help prepare and serve food to students and staff. Support the kitchen team with...
Location
Location
United Kingdom , Accrington
Salary
Salary:
7204.03 GBP / Year
elior.co.uk Logo
Elior UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A positive, can-do attitude
  • Ability to work as part of a team
  • Good time management and reliability
  • Willingness to learn and support others
Job Responsibility
Job Responsibility
  • Help prepare and serve food to students and staff
  • Support the kitchen team with daily tasks
  • Maintain high standards of cleanliness and food safety
What we offer
What we offer
  • Free, tasty meals
  • Flexible working
  • Plenty of Time to Unwind
  • Leave for life's important moments
  • Give back time - paid volunteering days
  • Room to grow - career development and learning opportunities
  • Wellbeing first - mental health support and wellbeing perks
  • Financial security - pension schemes and life assurance
  • Exclusive discounts
  • Parttime
Read More
Arrow Right