Platform Security Engineer

About the Role

The Internal Platform is a pivotal foundation that accelerates product development by providing a reliable, scalable, and self‑service ecosystem. It supports the entire software lifecycle and is meticulously tailored to meet the organization’s technological needs and strategic direction. The platform enables development teams to operate autonomously in 80% of cases, reducing dependency on the Internal Platform team, and ensuring that compliance, security, and business continuity are integrated across the entire platform—defending reliability of services and data integrity.

Challenges

• Platform Security is the first point of contact for the Global Security Team and is responsible for security and integrity of the underlying infrastructure, safeguarding the platform from vulnerabilities, threats, and attacks.
• Developing and maintaining tools for Global Security to deliver vulnerability‑management platforms for application triaging and continuous compliance.
• Understanding and integrating the diverse technology stacks used by multiple teams across the complex Docplanner organization.
• Ensuring scalability and reliability of systems as Docplanner grows, handling high traffic while maintaining security.

Who You’ll Work Closely With

• Global Security – main external stakeholder for security initiatives; collaborate on platform compliance, risk management, and act as a technical point of contact during escalated incidents (e.g., DDoS, abuse cases).
• PMS (Practice Management Systems) Teams – audit existing systems, support secure migration to the central platform, and interpret global security and legal requirements for PMS implementations.
• Core Team within Internal Platform – consult on technical compliance, networking standards, and resolve misconfigurations or vulnerabilities across platform components.
• Experience Teams – provide guidance on infrastructure‑related application security topics, secure encryption practices, and collaborate on secure CSP integrations.
• Legal – ensure alignment with data‑protection regulations, encryption standards, and locality requirements; use insights to assess and improve the platform’s security posture.

Impact on Our Mission

• Ensure the platform complies with industry best practices and standards for security (ISO 27001, C5, SOC 2).
• Introduce security at every step of the platform lifecycle.
• Vigilantly understand and mitigate security threats before they arise.
• Optimize system scalability and cost efficiency.
• Develop, monitor, and maintain Kubernetes clusters across several continents.
• Develop and maintain CI/CD pipelines.
• Ensure services are deployed for high availability.
• Fix urgent issues and optimize performance.
• Support other team members in their daily work.

What Will Help You Thrive

• At least 5 years of experience related to security.
• Extensive experience with container orchestration platforms like Kubernetes and securing them (must‑have).
• Ability to maintain and develop security‑focused CNI/Service Mesh policies (e.g., Calico, Cilium).
• Experience scanning for and managing vulnerabilities at scale.
• Experience with HashiCorp Vault.
• Knowledge of Terraform and popular CI/CD tools.
• Experience building scalable, secure production HA environments using AWS.
• Familiarity with network security services (e.g., AWS WAF, Cloudflare).
• Comfort developing tools or scripts in Bash or Go to automate work.
• Ability to communicate in English (spoken and written, minimum B2 level).
• Skill in influencing others on security best practices.

Compensation

• Salary aligned with experience and skills.
• Flexible remuneration and benefits via Flexoh, including restaurant card, transportation card, kindergarten support, and training tax savings.
• Share‑options plan after 6 months of employment.

Work‑Life Balance

• Remote or hybrid work model with a hub in Barcelona.
• Fully flexible working hours (typically only a few meetings per week).
• Summer intensive schedule (July–August): 7‑hour workdays, finish earlier.
• 23 paid holidays plus exchangeable local bank holidays.
• Additional paid holiday on your birthday or work anniversary (choose which to celebrate).

Health & Well‑Being

• Private healthcare plan with Adeslas for you (subsidized for family) covering medical and dental care.
• Access to hundreds of gyms for a symbolic fee (via Wellhub) for you and your family.
• Access to iFeel, a platform for mental wellness offering online psychological support and counseling.

Equal Opportunity

We promote and embrace equal opportunities in our hiring process and daily work. All candidates receive equal treatment regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or parental status, race, colour, nationality, ethnic or national origin, religion or belief, sex, sexual orientation, or any other dimension of human difference. If you require additional support during recruitment, please let us know. We are committed to adapting our process to ensure true equality.