CYBERSECURITY ATTACK SURFACE MANAGEMENT ANALYST - SDS

Cybersecurity Attack Surface Management Analyst - SDS Country.
Spain Hello! Welcome to the place responsible for developing the technology that improves the lives of 160 million customers around the world! This job offer is an opportunity not only to join a great company but also to collaborate in projects that have a real impact on society.
We are looking for a Cybersecurity Attack Surface Management Analyst based in our (Ciudad Financiera Boadilla del Monte) office, with at least 3-5 years of experience in (Cyber Security, Ransomware prevention, Vulnerability management) Let’s get to know each other! Santander Digital Services (SDS) is the team of technology and operations at Santander.
We are convinced of the importance of technology that is aligned with the requirements of the business and that out work not only brings value to users, people and communities but also fosters individual creativity.
Our team of over people in 8 countries (Spain, Portugal, Poland, UK, USA, Mexico, Chile and Brazil) develops and/or implements financial solutions across a broad spectrum of technologies (including Blockchain, Big Data and Angular among others) on all kinds of on-premise and cloud-based platforms.
We are undergoing one of the biggest transformations in our history and technology is at the heart of our strategy.
Join our team to play a part in one of the most important technological projects for the financial sector in the world.
One of our guiding principles is continuous innovation, working with Agile and DevSecOps methodologies and adopting all the leading market technology to work with the best tech stack.
We recently received Top Employer certification in Spain, Europe and globally for the sixth consecutive year and we are one of the World’s 25 Best Workplaces.
We are very proud to be an equal opportunities organisation, and we are building a dynamic and proactive team.
All we ask from you is that you bring a positive attitude and share our values and a commitment to development of cutting-edge technology, no matter where you come from or where you end up.
Your role We are looking for a Cybersecurity Attack Surface Management Analyst for our Advanced Threat Management department, a key team in our technology ecosystem.
This area is responsible for (manage Ransomware Task Force, identify weak areas in cyberdefense layer against ransomware attack, manage attack surface management, follow – up control implementation plans and risk indicators related to Task Force) ‍Your main tasks will be.
[Oversight of Global Ransomware TaskForce] [Identify relevant ransomware threats base on Threat Intel] [Map ransomware threats against our attack surface and controls stacks] [Prioritize controls implementation based on relevant threats] [Propose new controls] [Propose test scenarios] [Organize meeting with all relevant areas to create yearly plan for ransomware control stack] [Organize monthly meeting with countries] [Follow-up control implementation and key risk indicators] [Escalate relevant threats and breach thresholds] What you’ll bring You’re sure to fit in if you like technology and are constantly learning about new developments, as well as having an interest in better understanding the risks faced by the Bank.
In addition to developing your technical skills, you should also be interested in improving your soft skills.
If you think you’ve got what it takes, these are the key skills we’ll be looking for in your CV.
(Required education, hard skills, soft sills, languages, etc.) Passion to cyber Knowledge about ransomware types and propagation methods.
Knowledge about Mitre ATT&CK Knowledge about tools.
Vulnerabilities scanners, SIEM, EDR, FW, WAF, DAM,Proxy, BAS tools.
Knowledge about cyber architecture and backup and recovery.
Scrupulousness Team work, strong collaboration oriented person, enthusiasm and positive attitude.
Excell, PowerPoint, PowerBi English B2/C1 contact with all countries in the group.
The following would also be great...
(Desirable requirements) CISSP, CEH.
Experience with EDR, Ransomware BAS tools, SIEM, VM scanners.
What is the Be Tech! experience like? Hybrid working model (working remotely some days and meeting with the team in the office on other days).
Flexible working hours.
Possibility of travelling to collaborate with teams in other countries.
Opportunities to develop your career in different overseas units and countries.
Continuous training in innovative technical fields so you are always up to date and have the tools you need to do your job.
Career plan to ensure your professional growth and that your efforts are duly rewarded.
Highly competitive salary and bonuses.
Financial benefits (special interest rates for loans, preferential banking terms, pension plan, life insurance, etc.) Social benefits (gym and medical centre on the premis...