Company A leading international retailer with more than ******* employees worldwide in 33 different countries and over ****** stores, has established an IT HUB in Barcelona as part of its IT division, responsible for the selection and provision of IT infrastructure, IT platforms and business applications.
Responsibilities
* Coordinate and communicate IT security incidents across teams and countries, managing the incident response process.
* Detect and analyze potential security incidents, ensuring effective containment.
* Reconstruct cyber‑attacks and malware, analyze sensitive data, and derive remediation actions.
* Develop mechanisms to detect anomalies and attacks, initiating preventive measures to alert in time.
* Monitor the general threat landscape on the Internet and provide actionable recommendations.
* Advise internal projects on security‑related issues.
* Conduct IT forensic investigations.
* Create meaningful reports on IT security incidents.
Qualifications
* 5+ years of professional experience in Incident Response, leading medium to critical security incident response.
* Hands‑on experience in incident response, including triage, containment, remediation, and end‑to‑end security investigations.
* Experience partnering with Escalation Management, Product Development/Engineering, IT, Legal, Cloud Ops, and wider cybersecurity teams to lead remediation.
* University degree in Information Technology or comparable education.
* Strong English skills, fluent business English (speaking and writing) at advanced level (B2+).
* Further education in IT forensics and security incident management.
* Expert knowledge in SIEM systems (preferably Splunk), SOAR tools, and EDR solutions.
* Strong technical expertise in deployed technologies and cyber attack techniques.
* Knowledge of national and international IT standards and frameworks (ISO *****, NIST Cyber Security Framework, BSI Grundschutz, ITIL, OWASP, MITRE ATT&CK).
* High communicative and analytical skills, ability to work independently, and strong team spirit.
* Confidence and persuasiveness, with communication skills in both German and English.
* Commitment to continuous education and professional development.
* Would be a plus: Strong digital forensics skills, including analysis, timeline reconstruction, and interpreting artefacts across Windows, macOS, Linux, and cloud environments.
* Would be a plus: Experience in cloud incident response including familiarity with cloud‑native logging, identity systems, and investigation techniques.
* Would be a plus: Knowledge of application security, including investigating application‑layer attacks, abuse cases, and SaaS‑specific threats.
Shift Options
* Morning shift (5:*******:00h), from Monday to Friday (no rotation).
* Afternoon shift (13:*******:00h), from Monday to Friday (no rotation).
Benefits
These are hybrid mode permanent positions. 2 days/week at the office. You will be part of an international team composed of people from different countries and backgrounds, where you’ll share your experience and knowledge to achieve teamwork and meet objectives. On top of this, you’ll receive a personal follow‑up with your management team to help you understand all business‑related questions and guide you in your professional career. We offer a competitive compensation and benefits package: lunch vouchers, health and dental insurance, transport, wellbeing, etc.
#J-18808-Ljbffr