Browse
···
Log in / Register
Job Summary: Join Telefónica Tech's Cybersecurity and Incident Response team to lead crisis management as an Incident Handler, ensuring identification, analysis, and mitigation of security incidents. Key Highlights: 1. Leadership in crisis management as an Incident Handler. 2. Collaboration in investigating complex incidents. 3. Contribution to the continuous improvement of cybersecurity. **WHAT IS TELEFÓNICA TECH?** Telefónica Tech is the leading digital transformation company within the Telefónica Group. We offer a comprehensive portfolio of integrated technological services and solutions in Cybersecurity, Cloud, IoT, Big Data, Artificial Intelligence, and Blockchain, supporting our customers throughout their digital transformation journey. We are a group of over 6,200 courageous professionals working daily from various locations worldwide to achieve excellence through leadership grounded in transparency and teamwork. If you identify with our core values, we look forward to meeting you! www.telefonicatech.com **WHAT DO WE DO IN THE TEAM?** Within Telefónica Tech’s **Cybersecurity and Incident Response** unit, we manage, analyze, and mitigate security incidents in real time. We specialize in protecting our customers’ critical assets against digital threats, ensuring business continuity and minimizing risks. We work closely with multidisciplinary teams to guarantee effective, tailored responses aligned with each organization’s specific needs. **WHAT WILL YOUR DAY-TO-DAY LOOK LIKE?** Your mission will be to ensure proper identification, analysis, and response to cybersecurity incidents by applying best practices in cybersecurity, developing new use cases, and coordinating with N1 and N2 teams. **Your day-to-day responsibilities will include:** + Leading crisis management as an Incident Handler during incident response. + Designing and coordinating incident identification, containment, analysis, eradication, and recovery plans. + Designing and coordinating incident simulations to deliver Incident Readiness services. + Proactive threat hunting (“Threat Hunting”). + Collaborating with internal and external teams in investigating complex incidents. + Generating and reviewing detailed reports on events, incidents, and security trends. + Proposing improvements to cybersecurity policies and procedures. + Contributing to updating and maintaining Indicators of Compromise (IoCs). + Participating in incident response simulations and cybersecurity exercises. + Creating and reviewing technical and forensic reports. + Supporting and supervising the N2 team. **AND FOR THIS, WE BELIEVE IT WOULD BE IDEAL IF YOU HAD…** **Experience** - Over **5 years** of experience in roles related to cybersecurity analysis, incident management, and SOC/CERT operations. - Prior experience in highly critical environments. - Advanced knowledge of Incident Response, log acquisition and analysis, Cyber Intelligence, and malware analysis. - Experience designing use cases and incident response playbooks. - Knowledge of designing workflows across different operational teams. - Familiarity with security frameworks and standards such as NIST, ISO 27001, and MITRE ATT&CK. - Experience managing/operating SIEM tools (Splunk, QRadar, etc.) and EDR/XDR solutions. - Creation of technical, forensic, and expert reports. **Education** **Required:** + Degree in Computer Engineering, Telecommunications, or equivalent. **Desirable:** + Relevant certifications such as **GEIR, GCFA, GCFE, GCIH**, **CEH, CompTIA Security+, or similar.** **Technical Knowledge** + Analysis using security tools (SIEM, IDS/IPS, EDR, firewalls, WAF). + Acquisition and analysis of artifacts using forensic tools (KAPE, Velociraptor, Eric Zimmerman, Sysinternals, Nirsoft, X-Ways, Wireshark, tcpdump, etc.). + Acquisition and analysis of mobile device forensic artifacts. + Identification of Indicators of Compromise (IoCs) and analysis of attacker Tactics, Techniques, and Procedures (TTPs). + Scripting for task automation (Python, PowerShell, Bash). + Advanced concepts in vulnerability management and risk analysis. **The following skills would align well with the team and project requirements:** + **Problem Solving:** Ability to analyze complex situations and make rapid decisions. + **Teamwork:** Skills to collaborate effectively with multiple teams under pressure. + **Effective Communication:** Ability to convey technical findings to non-technical audiences. + **Proactivity:** Attitude oriented toward continuous process and tool improvement. + **Critical Thinking:** Anticipating potential impacts and mitigating them before they occur. **LANGUAGES** + **Mandatory:** Spoken and written **Catalan**. + Preferred: English at minimum B2 level, both written and spoken. **WHAT DO WE OFFER?** * Work-life balance measures and flexible working hours. * Continuous training and certification opportunities. * Hybrid remote work model. * Attractive social benefits package. * Excellent dynamic, multidisciplinary working environment. * Volunteering programs. **\#WeAreDiverse \#WePromoteEquality** We firmly believe that diverse and inclusive teams are more innovative, transformative, and achieve better results. Therefore, we promote and guarantee inclusion for all individuals, regardless of gender, age, sexual orientation or identity, culture, disability, or any other condition. We want to meet you!
