Expert Cyber Security Engineer

As an Expert Cyber Security Engineer at client, you are more than just a tester; you are the bridge between our cutting-edge AI security product and our most sophisticated global clients. This role is a unique 50/50 split between deep-core security research and high-impact customer engagement.

You will help us move beyond traditional, one-off pentesting toward an AI-first model of continuous validation. You will challenge our AI agent's findings, expand upon its capabilities, and lead the technical conversation with our customers to prove the value of AI-driven security.

Responsibilities:

• Strategic Customer Advisory (50%): * Act as the "Face of Security" for Tenzai during POCs and deep-dive technical sessions with external stakeholders

• Present complex security findings and AI-generated insights to sophisticated clients, helping them interpret risks and prioritize remediation
• Navigate the nuances of an early-stage AI product, confidently managing client expectations and demonstrating the system's evolving capabilities

• Offensive Security Research (30%): * Perform manual, hands-on penetration testing to validate and expand upon the AI agent's findings

• Investigate the "edge cases" where AI might hallucinate or miss logic-driven flaws, providing the human expertise needed to ensure 100% accuracy
• Conduct vulnerability research across complex web applications and modern cloud-native infrastructures

• Product R&D & Innovation (20%):

• Collaborate directly with the development team to improve the AI agent's scanning methodology, coverage, and test case validation
• Build security tools, scripts (Python), and prototypes to automate repetitive testing tasks and enhance the backend engine, * Care: your mental and physical health is our priority. We ensure comprehensive company-paid medical insurance and 4 additional undocumented sick leave days

• Tailored education path: boost your skills and knowledge with our regular internal events (meetups, conferences, workshops), Udemy license, language courses and company-paid certifications
• Growth environment: share your experience and level up your expertise with a community of skilled professionals, locally and globally
• Flexibility: Own your schedule - you are the one to decide when to start your working day. Just don't miss your regular team stand-up. We are there to support your work-life balance and provide 23 vacation days & short Fridays
• Opportunities: we value our specialists and always find the best options for them. Our Internal Mobility Program helps change a project if needed to help you grow, excel professionally and fulfill your potential
• Global impact: work on large-scale projects that redefine industries with international and fast-growing clients
• Welcoming environment: feel empowered with a friendly team, open-door policy, informal atmosphere within the company and regular team-building events

• 7+ years of experience in cybersecurity, with a heavy focus on advanced web application penetration testing
• The "Consultant Mindset": Proven experience in a client-facing role (e.g., as a Security Consultant or Pre-Sales Engineer) where you have presented technical findings to external stakeholders
• Technical Depth: Ability to identify complex, business-logic-driven vulnerabilities that automated scanners miss (multi-stage auth bypass, complex injection flaws)
• Automation Skills: Solid Python scripting skills to build security tools and automate workflows
• Startup DNA: You are proactive, flexible, and comfortable with the "controlled chaos" of a fast-growing startup. You don't just wait for tasks; you challenge requirements and propose better ways to work

Desirable:

• Experience securing AI/ML platforms or serverless architectures
• Expertise in AWS, GCP, or Kubernetes security
• Industry-standard certifications (OSCP, OSEP, CISSP)

Personal skills:

• Resilience & Composure: You stay calm during live demos and can pivot the conversation if a technical tool behaves unexpectedly
• The Proactive Challenger: You are willing to push back on inappropriate work assignments and "challenge" the status quo to ensure the product stays on the right path
• Bilingual Skills: You speak "Developer," "Hacker," and "Business" fluently

Ciklum is looking for an Expert Cyber Security Engineer to join our team full-time in Spain. We are a custom product engineering company that supports both multinational organizations and scaling startups to solve their most complex business challenges. With a global team of over 4,000 highly skilled developers, consultants, analysts and product owners, we engineer technology that redefines industries and shapes the way people live., At Ciklum, we are always exploring innovations, empowering each other to achieve more, and engineering solutions that matter. With us, you'll work with cutting-edge technologies, contribute to impactful projects, and be part of a One Team culture that values collaboration and progress. Based in Málaga, our team thrives in one of Andalusia's leading tech hubs. Enjoy a hybrid work setup, the sunny Mediterranean vibe, and endless opportunities to grow your skills on global-scale projects.