Cybersecurity consultant

Tasks

Cyber Security Consultant

Madrid, Spain

Contract

The role will work to improve the IT Security posture of Client and reduce identified cybersecurity risks by working as part of a global team, and in close alignment with regional security teams. The overall target for this position includes:

JOB RESPONSIBILITIES:

• Ensure CSC tools and services are effectively utilized and operated, identify gaps in process or procedures and implement new solutions accordingly.
• Ensure incident identification, assessment, reporting, communication, mitigation and monitoring.
• Establish operational foundations, defining and tracking SLAs, metrics, and KPIs to drive governance, quality, and efficiency.
• Creation of reports, dashboards, metrics for CSC and regular reporting to Senior Leadership and other technical and non-technical stakeholders.
• Drive the continuous integration of standard and non-standard log sources in security monitoring and detection tools to achieve excellence in detection and response.
• Lead the definition and development of use cases, playbooks, policies and custom tooling to continuously improve Client’s security maturity.
• Develop and enhance incident response processes, to detect and effectively respond to information security events and incidents.
• Influence and mature CSC processes through innovation and operational change.
• Ensure detection, escalation and response services are available 24/7. As Security incidents may occur, at all hours and across geographies, this role will be part of the cross functional team responsible to drive urgent security response in crisis scenarios.
• Work effectively as part of a geographically distributed organization to run a high performing global detection and response service coordinating the different teams and service providers involved.
• Stay abreast of industry trends and changing threat landscape and review technologies/services and make recommendations.

Requirements

Technical / functional skills:

• Knowledge of modern attacker tactics, techniques, and procedures, and great awareness of cybersecurity trends.
• Ability to drive innovative ways to detect vulnerabilities and exploit activity, and neutralize them through advanced technological countermeasures.
• Experience in creating BAU runbooks, use-case definitions and operating procedures.
• Experience in the use of security frameworks and Methodologies such as MITRE ATT&CK, MaGMa, TaHiTI or NIST.
• Experience with managing threats associated with cloud platforms (AWS, Google) and artifacts (code, containers, hardware devices, infrastructure).
• Deep knowledge in application and infrastructure security, as well as security fundamentals (IAM, Data Protection, PKI, Network Security).
• Strong attention to detail with an analytical mind and outstanding problem-solving skills, especially in performing tasks such as log analysis.
• Ability to conduct deep technical research into issues and products.
• Strong reporting, dashboarding and communication skills; ability to write or present actionable intelligence derived from raw data for IT and Non-IT stakeholders.
• Expertise across a number of the following areas/tools: Google scripting, ServiceNow, JIRA, Splunk, QRadar, Kali Linux, NMAP, Burp, Reverse engineering, Digital Forensics.