Descrição do Emprego - Cybersecurity Engineer Tier 2
We're fast learners, hard workers, natural collaborators... and we Make Modern Happen!
Our ambition is to unlock the potential of our digital world so that organisations everywhere can innovate and thrive securely.
We aim to achieve this goal by bringing together the world’s most talented people and the most powerful technologies, combining them to address our customers' challenges and to build something stronger together.
If you share our vision, join us!
Right now, we are looking for a Cybersecurity Engineer Tier 2 to integrate our internal team, based in Lisbon/ Porto.
Your responsibilities include:
Act as an L2 SOC Analyst, ensuring in -depth analysis and validation of alerts escalated by Tier 1.
Perform fine -tuning and optimization of detection rules in Microsoft Sentinel, Microsoft Defender, and other SIEM platforms, focusing on reducing false positives and improving detection quality.
Conduct root cause analysis of security incidents, identifying attack vectors, impact, and corrective measures.
Support incident response and DFIR activities, including initial forensic analysis, event correlation, and evidence collection.
Contribute to threat hunting, behavioral analysis, and advanced threat detection initiatives.
Identify visibility gaps, logging issues, or excessive noise, and propose technical improvements.
Support the integration and validation of new log sources and technologies within the SOC.
Document incidents, technical analyses, and lessons learned, contributing to both technical and operational reports.
Collaborate with Tier 1 and Tier 3 analysts, promoting best practices and continuous process improvement within the SOC.
Tune and optimize detection rules (SIEM, EDR/XDR).
Identify and resolve visibility gaps, noise, or false positives.
Support onboarding of new log sources and technologies into the SOC.
Produce technical and executive reports for clients and internal stakeholders.
Promote best practices, mentor analysts, and support team growth.
You must have:
Solid SOC experience (minimum 2–4 years), including incident analysis.
Hands -on experience with Microsoft Sentinel, Microsoft Defender, and/or other SIEM/EDR/XDR tools.
Strong technical analysis and incident investigation skills.
Knowledge of MITRE ATT&CK, incident response (IR) concepts, and DFIR fundamentals.
Strong communication skills, with the ability to prioritize and collaborate effectively in an operational environment.
We value:
Previous experience in detection fine -tuning and continuous improvement of SIEM rules.
Experience in Digital Forensics & Incident Response (DFIR).
Todos os Anúncios de Emprego estão sujeitos aos Terms of Service do GrabJobs. Permitimos que os usuários marquem postagens que possam estar em violação desses termos. Anúncios de emprego também podem ser marcados pela equipe de moderação do GrabJobs. No entanto, nenhum sistema de moderação é perfeito, e marcar uma postagem não garante que ela será removida.
Seja o primeiro a receber as últimas vagas Others Full-Time em Portugal.
Setup your job alert:
Ao ativar os alertas de emprego, eu concordo com os Terms & Privacy Policy do GrabJobs. Posso cancelar a inscrição nos alertas de emprego a qualquer momento.
Pular
Você atingiu seu número máximo de alertas de emprego.
O GrabJobs é o portal de empregos número 1 em Portugal, conectando você rapidamente a milhares de empregos de !
Encontre os melhores empregos de em Portugal, candidate-se com apenas 1 clique e consiga um emprego hoje!