Mission

We are looking for an analyst specialized in vulnerabilities and ethical hacking to join the Vulnerability Scanning team of Banco Santander’s SOC Global.

Functions

• Responsible for the execution and validation of results within the Global Vulnerability Scanning service.
• Write comprehensive reports including findings, results and recommendations based on test records.
• Develop technical solutions and new security tools to help test and validate security vulnerabilities and automate repetitive tasks.
• Interlocution with IT teams.

Requirements

Education
Bachelor’s Degree in Computer Science/Engineering, Information Technology/Systems, Cyber Security, Telecommunications Engineering, or equivalent work experience.

Complementary Education
Cybersecurity Master’s, Vulnerability or ethical hacking certifications and courses.

Competencies

• Detailed technical knowledge of security in BB.DD’s, networks and operating systems.
• Knowledge in application development with scripting capacity.
• Knowledge in security systems, including firewalls, intrusion detection systems, antivirus software, authentication systems, records management, content filtering, etc..
• Knowledge in security and network technologies, with tools for monitoring systems, security and networks.
• Analytical capacity.
• Experience in managed security services.
• Excellent social, leadership and communication skills.
• Proactivity, customer orientation and results.
• Experience in; Vulnerability analysis, Source code Analysis, Pentesting; Social Engineering and
• Forensic Analysis.
• High level of English in reading, writing and speaking.

Consideration will be given to:

• Certified training in Incident Handling.
• Certified training in forensic analysis.
• Certified training in Ethical Hacking.
• Certified training in Vulnerability Assessment.
• Certified training in vulnerability analysis products (Qualys, Nessus, Acunetix, Netsparker or IBM APP Scan).
• Security related certifications:
• CEH, Certificacion de hacking etico, EC-COUNCIL.
• GIAC Security Essentials (GSEC)
• GIAC Certified Incident Handler (GCIH)
• GIAC Certified Intrusion Analyst (GCIA)
• GIAC Penetration Tester (GPEN)
• GIAC Web Application Penetration Tester (GWAPT)
• GIAC Information Security Fundamentals (GISF)
• ECSA, EC-Council Certified Security Analyst, EC-Council.
• OSCP, Offensive Security Certified Professional.
• GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
• CISSP, Certified Information Systems Security Professional. (ISC)2.

Network related certifications:

• CCNA or similar.
• Systems Related Certifications:
• Linux LPI.
• MSCE.

Other certifications:

• ITIL Foundations v3.

Languages
English Advance.

Experience

• More than 3 years of experience in Vulnerability Assessment.
• More than 1 years of experience as an ethical hacking auditor.