Logo of Huzzle

Cyber Incident Commander – Global CERT - Santander Digital Services

image

Santander

18d ago

  • Job
    Full-time
    Mid Level
  • IT & Cybersecurity
  • Madrid

AI generated summary

  • You need 3+ years in Cybersecurity Incident Response, crisis management experience, a technical degree, knowledge of incident handling, risk management, and cyber attack stages, plus English and Spanish skills.
  • You will lead incident response teams, define strategies, coordinate with Local CERTs, manage third-party incidents, and collaborate on lessons learned and policy improvements in cybersecurity.

Requirements

  • 3+ years of experience in Cybersecurity Incident Response or similar responsibilities.
  • Experience in crisis management is desirable.
  • Technical degree or Computing Modules.
  • Knowledge of Incident Response and Handling methodologies – Experienced level.
  • Knowledge of cyber incident categories, incident response, and timelines for responses.
  • Knowledge of cyber defense and information security procedures and regulations.
  • Knowledge of cyber attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).
  • Knowledge of risk management processes (e.g., methods for assessing and mitigating risk).
  • High level of English.
  • Desired one or more of the following certifications (CISSP, CISA, CISM, CEH, OSCP, GCIH).
  • Experience in the financial/banking industry.
  • Spanish.
  • Sin experiencia.
  • Básica Secundaria.

Responsibilities

  • Be an active part of the Incident Coordinators team of Global CERT.
  • Lead the response squad created to manage the incidents, made up of different roles: Incident coordinator, Incident Handlers, Forensic Analysts and Intelligence Analysts.
  • Define the strategy and a tailored action plan to respond to each incident.
  • Collaborate with the Local CERTs in the handling of the incidents.
  • Coordinate and manage cybersecurity incidents impacting Third Party vendors and providers, mitigating the potential risk that may pose to the Group.
  • Become part of a world class team that will own, respond and coordinate the most relevant and challenging cybersecurity incidents across the Group.
  • Be available to participate in the incident response procedure with a On-Call scheme rotating among all the team members.
  • Collaborate during the aftermath of a cybersecurity incident in the identification of Lesson Learnt that will shape and evolve the Group’s security posture.
  • Collaborate with key stakeholders within the bank, such as Global Forensics, Global Security Operations Centre, Corporate Security & Intelligence, Global Cyber Fraud, Global Legal, Secure User Experience team, among others.
  • Team up in projects related with the development and improvement of Incident Response plans, policies, and procedures.
  • Enjoy being part of a strong and collaborative Cybersecurity Community across the world.

FAQs

What is the job title for this position?

The job title is Cyber Incident Commander – Global CERT at Santander Digital Services.

Where is this position located?

This position is based in Boadilla del Monte, Spain.

What does the Cyber Incident Commander do?

The Cyber Incident Commander provides specialized services to help manage and investigate cyber incidents and threats.

What are the primary responsibilities of the Cyber Incident Commander?

Responsibilities include leading the incident response team, defining strategies for incident response, coordinating with Local CERTs, managing incidents involving third-party vendors, and collaborating on Incident Response plans.

What is the required experience for this role?

Candidates should have 3+ years of experience in Cybersecurity Incident Response or similar responsibilities.

What educational qualifications are required?

A technical degree or Computing Modules are required for this role.

What skills and knowledge are necessary for the Cyber Incident Commander position?

Required skills include knowledge of incident response methodologies, cyber incident categories, information security procedures, and high proficiency in English.

Are there any recommended certifications for this role?

Desired certifications include CISSP, CISA, CISM, CEH, OSCP, or GCIH.

Is crisis management experience desired for this position?

Yes, experience in crisis management is desirable for the Cyber Incident Commander role.

Will there be opportunities for collaboration within the bank?

Yes, the Cyber Incident Commander will collaborate with various key stakeholders and departments within the bank.

Do we support remote work?

Yes, we do support remote work but in a hybrid format.

Do we support medicare?

Yes, we support medicare.

Here to help you prosper

Finance
Industry
10,001+
Employees
1857
Founded Year

Mission & Purpose

Santander is a leading global bank, founded in 1857 and headquartered in Spain, and is one of the largest banks in the world by market capitalisation. It provides a wide range of financial products and services, including personal and corporate banking, wealth management, and insurance. With a strong presence in Europe, Latin America, North America, and Asia, Santander's mission is to help people and businesses prosper by offering customer-centric solutions. Its purpose is to support growth and innovation while fostering responsible banking practices to benefit individuals, businesses, and communities.