Browse
···
Log in / Register
Job Summary: Telefónica Tech seeks a cybersecurity expert to identify, analyze, and respond to security incidents, applying best practices and designing playbooks. Key Highlights: 1. Manage and mitigate security incidents in real time. 2. Lead response to complex incidents and forensic analysis. 3. Collaborate in a dynamic, multidisciplinary environment. **What is Telefónica Tech?** Telefónica Tech is the leading digital transformation company within the Telefónica Group. We offer a comprehensive portfolio of integrated technology services and solutions in Cybersecurity, Cloud, IoT, Big Data, Artificial Intelligence, and Blockchain, supporting our clients throughout their digital transformation journey. We are a team of over 6,200 bold professionals working daily from various locations worldwide to achieve excellence through transparent leadership and a strong team spirit. If you identify with our core values, we look forward to meeting you! www.telefonicatech.com**What Do We Do in the Team?** Within Telefónica Tech’s **Cybersecurity and Incident Response Unit**, we manage, analyze, and mitigate security incidents in real time. We specialize in protecting our clients’ critical assets against digital threats, ensuring business continuity and minimizing risks. We work closely with multidisciplinary teams to guarantee effective, tailored responses aligned with each organization’s needs—particularly in the banking sector. **What Will Your Day-to-Day Look Like?** Your mission will be to ensure accurate identification, analysis, and response to cybersecurity incidents, applying cybersecurity best practices, developing new use cases, designing playbooks, and coordinating with N1 and N2 teams\. Your day-to-day responsibilities include: **Your day-to-day will include:** + Designing and coordinating incident containment, analysis, eradication, and recovery plans. + Managing technical N2 and N3 Incident Response teams. + Collaborating with internal and external teams during investigations of complex incidents. + Acting as an Incident Handler during incident response. + Generating detailed reports on events, incidents, and security trends. + Proposing improvements to cybersecurity policies and procedures. + Contributing to updating and maintaining Indicators of Compromise (IoCs). + Participating in incident response simulations and cybersecurity exercises. + Creating and reviewing technical and forensic reports. + Designing and overseeing incident response playbooks. **And for this, we believe it would be ideal if you had…** **Experience** * Over **5 years** in roles related to cybersecurity analysis, incident management, and SOC/CERT operations. * Prior experience in high-criticality environments, preferably in the banking sector. * Experience managing teams. * Advanced knowledge of Incident Response and digital forensic analysis. * Experience designing use cases and incident response playbooks. * Knowledge of workflow design across different operational teams. * Familiarity with security frameworks and standards such as NIST, ISO 27001, and MITRE ATT\&CK. * Experience managing/operating SIEM tools (e.g., Splunk, QRadar) and EDR/XDR solutions. * Creation of technical, forensic, and expert reports. **Education** **Required:** + Degree in Computer Engineering, Telecommunications, or equivalent. **Desirable:** + Relevant certifications such as **GEIR, GCFA, GCFE, GCIH**, **CEH, CompTIA Security\+, or similar.** **Technical Knowledge** + Analysis using security tools (SIEM, IDS/IPS, EDR, firewalls, WAF). + Acquisition and analysis of artifacts using forensic tools. + Identification of Indicators of Compromise (IoCs) and analysis of attacker TTPs. + Scripting for task automation (Python, PowerShell, Bash). + Advanced concepts in vulnerability management and risk analysis. **Skills that would align well with the team and project include:** + **Problem-solving:** Ability to analyze complex situations and make rapid decisions. + **Teamwork:** Skills to collaborate effectively with multiple teams under pressure. + **Effective communication:** Ability to convey technical findings to non-technical audiences. + **Proactivity:** Mindset oriented toward continuous improvement of processes and tools. + **Critical thinking:** Anticipating potential impacts and mitigating them before they occur. **Languages** + Preferred: English at minimum B2 level, both written and spoken. **What Do We Offer?** * Work-life balance measures and flexible scheduling. * Continuous training and certification support. * Hybrid remote work model. * Attractive social benefits package. * Excellent, dynamic, and multidisciplinary work environment. * Volunteering programs. **\#WeAreDiverse \#WePromoteEquality** We firmly believe diverse and inclusive teams are more innovative, transformative, and deliver better results. Therefore, we promote and guarantee inclusion for all individuals regardless of gender, age, sexual orientation or identity, culture, disability, or any other condition. We look forward to meeting you!
