SOC Analyst (Lisbon - Hybrid)

We're fast learners, hard
workers, natural collaborators... and we Make Modern Happen!

Our ambition is to unlock the
potential of our digital world so that organisations everywhere can innovate
and thrive securely. We aim to achieve this goal by bringing together the
world’s most talented people and the most powerful technologies, combining them
to address our customers' challenges and to build something stronger together.

If you share
our vision, join us!

Right now, we
are looking for a SOC Analyst for a client on our Talent Team.

Your responsibilities include:

• Monitoring
  security events and alerts from multiple cybersecurity tools (SIEM, EDR,
  IDS/IPS, firewalls and others);
  
• Analysing
  and investigating security alerts to identify potential incidents or suspicious
  activities;
  
• Performing
  triage and classification of security incidents according to defined
  procedures;
  
• Executing
  initial response and containment actions whenever applicable;
  
• Escalating
  incidents to advanced security teams or responsible technical teams when
  necessary;
  
• Performing
  log analysis and event correlation using SIEM platforms;
  
• Documenting
  incidents, investigations and actions according to SOC processes;
  
• Contributing
  to the continuous improvement of detection rules and use cases;
  
• Supporting
  the fine tuning of security tools to reduce false positives;
  
• Collaborating
  with IT and cybersecurity teams in incident investigation and resolution.
  

You must have:

• Experience in Security Operations
  (SOC) or security event monitoring;
  
• Knowledge of SIEM platforms (e.g.,
  Splunk, QRadar, Microsoft Sentinel or similar);
  
• Experience analysing security logs
  and network events;
  
• Knowledge of network protocols,
  operating systems and IT architecture;
  
• Familiarity with security tools such
  as: EDR / XDR, IDS / IPS, Firewalls, Endpoint protection solutions;
  
• Knowledge of security frameworks
  (MITRE ATT&CK, NIST or similar);
  
• Experience with security incident
  management processes.
  

We Value:

• Experience
  with threat hunting or advanced incident analysis;
  
• Knowledge
  of security automation processes (SOAR);
  
• Experience
  with cloud environments (Azure, AWS or GCP);
  
• Relevant
  cybersecurity certifications such as CompTIA Security+, CySA+, GCIH or SC‑200.
  

We
offer:

• Integration
  into a dynamic and motivated team for the performance of the role.
  
• Additional
  training.
  
• Salary package according to the role
  performed.
  
• Professional development.
  

Workplace: Lisbon - Hybrid