Incident Response Analyst (Cybersecurity)

TL;DR

Incident Response Analyst (Cybersecurity): Manage and coordinate IT security incident response processes, detect and analyze security incidents, and conduct forensic investigations with an accent on SIEM, SOAR, and EDR technologies. Focus on reconstructing cyber-attacks, developing anomaly detection mechanisms, and advising on security-related issues within a large retail group’s cybersecurity organization.

Location: Onsite in Barcelona, Spain

Company

Schwarz Global Services Barcelona is the IT hub of Europe’s largest retail group, serving Lidl, Kaufland, and other brands with high-value IT services.

What you will do

• Work night shift (22h to 6h) Monday to Friday in a 24x7 SOC team.
• Coordinate and communicate IT security incidents across teams and countries.
• Detect, analyze, and contain potential security incidents.
• Reconstruct cyber-attacks and malware, analyze sensitive data, and derive remediation actions.
• Develop mechanisms to detect anomalies and initiate preventive measures.
• Advise internal projects on security-related issues and conduct IT forensic investigations.

Requirements

• Location: Must work onsite in Barcelona, Spain
• University degree in information technology or comparable education.
• Fluent business English (B2 or higher) in speaking and writing.
• Further education in IT forensics and security incident management.
• Expert knowledge in SIEM systems (preferably Splunk), SOAR tools, and EDR solutions.
• Basic knowledge of IT standards and frameworks such as ISO 27001, NIST, ITIL, OWASP, and MITRE ATT&CK.

Culture & Benefits

• Opportunities for growth, development, and promotion based on performance and training.
• Wide range of education and training options to enhance soft and hard skills.
• Work in a dynamic environment within a top 5 global retail company.
• Support for continuous learning in cybersecurity.