DFIR Specialist - Santander Digital Services

DFIR Specialist - Santander Digital Services

Country: Spain

Hello! You've arrived at the place where the technology that improves the lives of 160 million customers around the world is developed.

This job offer is the opportunity to not only join a great company, but to collaborate on projects that have a real impact on society.

We are looking for a DFIR Specialist for our offices in Boadilla del Monte with at least 5 years of experience.

If you're curious about what your future at Santander would look like... this is just getting started.

The first thing is to introduce ourselves:

At SANTANDER DIGITAL SERVICES, technology is central to everything our clients and employees do. Through continuous innovation, working with Agile methodologies, we adopt the top technologies in the market to work with the best technological stack.

We have received the "Top Employer" distinction at the Spanish, European and Global level for the sixth consecutive year and we are very proud to be an equal opportunity organization. We are building a dynamic and proactive team. We just want you to bring good vibes, commitment to society and share our values, we don't care where you come from or where you go 😎.

What are we looking for?

We are looking to incorporate for the position DFIR Specialist people like you with the skills and competencies of development in digital technologies to Manage complex cyber security incidents globally across the group by responding and coordinating significant incidents ensuring successful resolution and adopting lessons learnt to increase the cyber resilience of Santander.

Design and supervise an organized approach to addressing and managing the aftermath of a security breach or cyberattack in order to limit damage on internal systems, data, and networks and reduce recovery time and costs.

Performing end-to-end digital forensic analysis, dynamic evidence recovery and coordination of global stakeholders to deliver evidential-standard investigations.

What you’ll bring

You are sure to fit in the team if you like technology, constantly learn new technologies and if in addition to developing your technical skills, you also care about improving your soft skills (communication skills, critical spirit, initiative and willingness to learn).

The candidate will have to perform the following tasks:

• Manage complex cyber security incidents globally across the group.

• Design and supervise an organized approach to addressing and managing the aftermath of a security breach or cyberattack in order to limit damage on internal systems, data, and networks and reduce recovery time and costs.

• Internal coordination between response teams to ensure that containment and eradication tasks are carried out in a timely manner.

• Internal coordination between response teams to ensure that investigative tasks are carried out in a timely manner.

• Independently perform forensic analysis in a timely manner to meet the case needs.

• Document case narrative, process and findings properly in the Incident Orchestration tool and standalone Forensic Reports when required, including cyber security recommendations applicable to the case.

What you will add value in:

Necessary:

• Experience working with Splunk and/or CrowdStrike.

• Possibility of working on shift.

• Knowledge of technologies, methods and tools of forensics investigations for IT security violations or potential threats; ability to identify, uncover and evaluate violations, warning reports, suspected incidents and insidious events.

• Knowledge of and ability to utilize a variety of specific tools for collecting, analyzing, and presenting digital-related evidence.

• Knowledge of techniques, approaches and processes of digital threats; ability to detect, monitor, analyze and prevent digital threats.

• Knowledge of technologies and technology-based solutions dealing with information security issues; ability to apply these in protecting information security across the organization.

• Knowledge of concepts, tools and practices of dealing with computer crime; ability to detect and prevent business crimes that involve computers/networks as instruments.

• Knowledge of the processes, tools and techniques of information security management, ability to deploy and monitor information security systems, as well as detect, resolve and prevent violations of IT security, to protect organizational data.

• Knowledge of techniques and tools that promote effective analysis and the ability to determine the root cause of organizational problems and create alternative solutions that resolve the problems in the best interest of the business.

• Knowledge of crisis management concepts and techniques; ability to predict, avert, mitigate, and recover from an event that has or could have a severely negative impact on the business.

• Knowledge of methods and ability to grasp new concepts, acquire new ways of seeing things, and revise ways of thinking and behaving, with the understanding that this is an ongoing business necessity.

• Knowledge of Incident Response and handling methodologies and Cyber Attack killchain.

Desirable:

• Fluent English spoken and written.

• Certification in GCFE y GCFA.

   

What is the Be Tech! experience like?

• In a team!!! With dynamic, proactive and open to change colleagues.

• Hybrid work model (you telework some days and others you meet with your team in the office).

• Flexibility in and out of the office.

• Possibility to travel (collaboration with countries) and collaborate with teams in those countries.

• International opportunities to develop in different units and countries.

• Continuous training in technical and innovative topics to always be up to date and be able to develop your work.

• Career plan for you to grow professionally and see your effort and work rewarded.

• Very competitive salary and bonus.

• Social benefits (special interest rates for loans, preferential banking conditions, pension plan, life insurance, etc.).

If you want to know more about the technology we develop in Santander or see other offers, visit our website www.betechwithsantander.com