Cybersecurity incidence response senior analyst for an international it hub

Company A leading international retailer with more than 575.000 employees worldwide in 33 different countries and over 13.700 stores, has stablished an IT HUB in Barcelona as part of his IT division, responsible for the selection and provision of IT infrastructure, IT platforms and business applications. With our agile mentality we are looking for people that is willing to make an impact on projects and solutions used worldwide by millions of customers. Agrupa Global Talent collaborates with our client to attract the best talent for its ITHUB located in Barcelona. We are looking for open-minded colleagues with passion for technology. We offer you diverse and exciting career opportunities in a dynamic work environment that stands for development and progress. Elevate your career with us, where development and progress are at the heart of everything we do. If you feel ready and think this opportunity is for you, we would be happy to meet you.Your TasksCoordinate and communicate IT security incidents across teams and countries, managing the incident response process. Detect and analyze potential security incidents, ensuring effective containment. Reconstruct cyber-attacks and malware, analyze sensitive data, and derive remediation actions. Develop mechanisms to detect anomalies and attacks, initiating preventive measures to alert in time. Monitor the general threat landscape on the Internet and provide actionable recommendations. Advise internal projects on security-related issues. Conduct IT forensic investigations. Create meaningful reports on IT security incidents. Job requirementsOur client's Cyber Defense Center is fully built and up and running. We are now looking to strengthen the team with an Incident Response expert to cover the weekday afternoon shift. This is a hands-on, experienced technical role focused on advanced incident, and continuous improvement rather than tier-one alert triage. You will join a large Cyber Security organization with excellent opportunities for growth, development, and promotion based on performance and training. Continuous learning is essential in this field, and the company supports this with a wide range of education and training options to enhance both soft and hard skills. 5+ years of professional experience in Incident Response, leading medium to critical security incident response. Hands-on experience in incident response, including triage, containment, remediation, and end-to-end security investigations. Experience partnering with Escalation Management, Product Development/Engineering, IT, Legal, Cloud Ops, and wider cybersecurity teams to lead remediation. University degree in Information Technology or comparable education. Strong English skills, fluent business English (speaking and writing) at advanced level (B2+). Further education in IT forensics and security incident management. Expert knowledge in SIEM systems (preferably Splunk), SOAR tools, and EDR solutions. Strong technical expertise in deployed technologies and cyber attack techniques. Knowledge of national and international IT standards and frameworks (ISO 27001, NIST Cyber Security Framework, BSI Grundschutz, ITIL, OWASP, MITRE ATT& CK). High communicative and analytical skills, ability to work independently, and strong team spirit. Confidence and persuasiveness, with communication skills in both German and English. Commitment to continuous education and professional development. Would be a plus: Strong digital forensics skills, including analysis, timeline reconstruction, and interpreting artefacts across Windows, mac OS, Linux, and cloud environments. Would be a plus: Experience in cloud incident response including familiarity with cloud-native logging, identity systems, and investigation techniques. Would be a plus: Knowledge of application security, including investigating application-layer attacks, abuse cases, and Saa S-specific threats. Shift optionsMorning shift (5:45 – 14:00h), from Monday to Friday (no rotation). Afternoon shift (13:45 – 22:00h), from Monday to Friday (no rotation). What We OfferThese are hybrid mode permanent positions. 2 days/week at the office. You will be part of an international team composed by people from different countries and backgrounds, where you'll be able to share your experience and knowledge to carry-out teamwork and meet the objectives. On top of this, you'll have a personal follow-up with your management team to help you understanding all business-related questions and guide you in your professional career. We offer a competitive compensation and benefits package: lunch vouchers, health and dental insurance, transport, wellbeing, etc. Contact If you are interested, please apply directly or send your CV to xavier.salra@agrupaglobal.com