Cyber Incident Commander – Global CERT - Santander Digital Services
Country: Spain
SANTANDER DIGITAL SERVICES is looking for a Cyber Incident Commander, based in our Boadilla del Monte office.
WHY YOU SHOULD CONSIDER THIS OPPORTUNITY
At Santander, we are key players in transforming the financial sector. Do you want to join us?
Santander Digital Services (SDS) is the technology and operations team at Santander. We believe in technology aligned with business needs, creating value for users, communities, and fostering creativity. Our team of over (number) people across countries (Spain, Portugal, Poland, UK, USA, Mexico, Chile, Brazil) develops and implements financial solutions using a broad spectrum of technologies, including Blockchain, Big Data, and Angular, on on-premise and cloud platforms.
Santander is committed to equal opportunities regardless of gender identity, culture, or disability. Our mission is to help more people and businesses prosper. We maintain a strong risk culture, expecting all professionals to proactively manage risks.
WHAT YOU WILL BE DOING
As a Cyber Incident Commander, you will provide specialized services to help entities manage and investigate cyber incidents and threats.
Your responsibilities include:
* Being an active member of the Incident Coordinators team within the Global CERT.
* Leading the response squad responsible for managing incidents, comprising Incident Coordinators, Handlers, Forensic Analysts, and Intelligence Analysts.
* Defining strategies and tailored action plans for each incident.
* Collaborating with Local CERTs in incident handling.
* Managing cybersecurity incidents impacting third-party vendors and providers, mitigating potential risks.
* Responding to and coordinating the most relevant cybersecurity incidents across the Group.
* Participating in incident response procedures on a rotating On-Call basis.
* Assisting in post-incident analysis to identify lessons learned and improve security posture.
* Collaborating with key stakeholders such as Global Forensics, SOC, Legal, and others.
* Contributing to the development and improvement of incident response plans, policies, and procedures.
* Being part of a global cybersecurity community.
EXPERIENCE
* Several years of experience in Cybersecurity Incident Response or similar roles.
* Crisis management experience is desirable.
EDUCATION
* Technical degree or studies in Computing.
SKILLS & KNOWLEDGE
Required
* Knowledge of Incident Response and Handling methodologies at an experienced level.
* Understanding of cyber incident categories, response timelines, and procedures.
* Knowledge of cyber defense, information security procedures, and regulations.
* Understanding of cyber attack stages (reconnaissance, scanning, gaining access, etc.).
* Knowledge of risk management processes.
* Proficiency in English.
Recommended
* Certifications such as CISSP, CISA, CISM, CEH, OSCP, GCIH.
* Experience in the financial or banking industry.
#J-18808-Ljbffr