Cyber Incident Commander – Global CERT - Santander Digital Services

Country: Spain

SANTANDER DIGITAL SERVICES is looking for a Cyber Incident Commander  , based in our Boadilla del Monte office.

WHY YOU SHOULD CONSIDER THIS OPPORTUNITY

At Santander (www.santander.com) we are key players in the transformation of the financial sector. Do you want to join us?

Santander Digital Services (SDS) is the team of technology and operations at Santander. We are convinced of the importance of technology that is aligned with the requirements of the business and that out work not only brings value to users, people and communities but also fosters individual creativity. Our team of over 7,000 people in 8 countries (Spain, Portugal, Poland, UK, USA, Mexico, Chile and Brazil) develops and/or implements financial solutions across a broad spectrum of technologies (including Blockchain, Big Data and Angular among others) on all kinds of on-premise and cloud-based platforms.

Santander is proud of being an organization where there are equal opportunities regardless of gender identity, culture and disability. Our mission is to contribute to help more people and business prosper. We embrace a strong risk culture and all of our professionals at all levels are expected to take a proactive and responsible approach toward risk management.

WHAT YOU WILL BE DOING

As a Cyber incident Commander, you will provide specialized services to help entities to manage and investigate cyber incidents and threats.

We need somebody like you to help us in different fronts:

• Be an active part of the Incident Coordinators team of Global CERT.
• Lead the response squad created to manage the incidents, made up of different roles: Incident coordinator, Incident Handlers, Forensic Analysts and Intelligence Analysts.
• Define the strategy and a tailored action plan to respond to each incident.
• Collaborate with the Local CERTs in the handling of the incidents.
• Coordinate and manage cybersecurity incidents impacting Third Party vendors and providers, mitigating the potential risk that may pose to the Group.
• Become part of a world class team that will own, respond and coordinate the most relevant and challenging cybersecurity incidents across the Group.
• Be available to participate in the incident response procedure with a On-Call scheme rotating among all the team members.
• Collaborate during the aftermath of a cybersecurity incident in the identification of Lesson Learnt that will shape and evolve the Group’s security posture.
• Collaborate with key stakeholders within the bank, such as Global Forensics, Global Security Operations Centre, Corporate Security & Intelligence, Global Cyber Fraud, Global Legal, Secure User Experience team, among others.
• Team up in projects related with the development and improvement of Incident Response plans, policies, and procedures.
• Enjoy being part of a strong and collaborative Cybersecurity Community across the world.

EXPERIENCE

• 3+ years of experience in Cybersecurity Incident Response or similar responsibilities.
• Experience in crisis management is desirable.

EDUCATION

• Technical degree or Computing Modules.

SKILLS & KNOWLEDGE

Required

• Knowledge of Incident Response and Handling methodologies – Experienced level.
• Knowledge of cyber incident categories, incident response, and timelines for responses.
• Knowledge of cyber defense and information security procedures and regulations.
• Knowledge of cyber attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
• High level of English.

Recommended

• Desired one or more of the following certifications (CISSP, CISA, CISM, CEH, OSCP, GCIH).
• Experience in the financial/banking industry.

If you want to know more about us, visit our website https://www.betechwithsantander.com/en/home