Take your career to the next level with Amaris Consulting as a Cybersecurity Incident Responder . Become part of an international team, thrive in a global group with €800M turnover and 1,000+ clients worldwide , and an agile environment by planning the kickoff and follow up on projects. Join Amaris Consulting, where you can develop your potential and make a difference within the company.

✍️ WHAT WOULD YOU NEED?

• 5+ years of hands-on experience in Incident Response , managing and investigating complex security incidents in enterprise environments
• Strong experience in cybersecurity incident response, digital forensics, and incident analysis
• Solid background in monitoring, detecting, containing, and remediating cybersecurity incidents
• Strong hands-on experience in digital forensics , including collection, triage, and analysis of evidence from endpoints
• Proficiency with forensic acquisition and artifact collection tools , including KAPE and UAC
• Strong written and verbal communication skills , with the ability to document findings and present clear recommendations to stakeholders
• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
• Relevant professional certifications preferred (e.g. OSCP, BTL2, GCIH, GCFR, GCFA, GREM )
• Experience in Red Team activities is considered a strong plus
• Fluent English (spoken and written)
• Hybrid in Barcelona (once per week).

WHAT WILL YOU DO?

• Monitor and analyze security alerts, logs, and reports to identify potential security incidents
• Perform in-depth analysis of security incidents, including root cause analysis and impact assessment
• Coordinate with Level 2 Analysts and other IT/Infrastructure teams to contain and remediate security incidents
• Lead and support incident response activities across the full lifecycle (identification, containment, eradication, recovery, and lessons learned)
• Conduct digital forensics investigations , including evidence collection, triage, and artifact analysis from endpoints
• Develop, maintain, and continuously improve incident response procedures, playbooks, and documentation
• Provide guidance, coaching, and mentorship to Security Analysts within the Cyber Security Operations Center
• Contribute to the continuous improvement of the organization’s security posture through the development and implementation of security controls and best practices
• Assist in the creation and maintenance of security policies, standards, and guidelines
• Stay up to date with the latest cybersecurity threats, attack techniques, tools, and technologies , and translate them into actionable improvements