SOC Cybersecurity Analyst (Lisboa)

We're fast
learners, hard workers, natural collaborators... and we Make Modern
Happen!

Our
ambition is to unlock the potential of our digital world so that organisations
everywhere can innovate and thrive securely.

We aim to
achieve this goal by bringing together the world’s most talented people and the
most powerful technologies, combining them to address our customers' challenges
and to build something stronger together.

If you
share our vision, join us!

Right now,
we are looking for a SOC Cybersecurity Analyst to integrate our
internal team, based in Lisbon.

Your responsibilities include:

• Monitoring
  and triage of security alerts in SIEM and XDR platforms (Microsoft Sentinel /
  FortiSIEM and Microsoft Defender), identification of false positives, and
  initial investigation of low - to medium -impact incidents.
  
• Execution of defined playbooks and response procedures; collection of IOCs and
  initial evidence for escalation and support of forensic analysis.
  
• Escalation of complex incidents to senior analysts/TAM; maintenance of complete
  ticket records and action documentation in ITSM (ServiceNow).
  
• Support for the integration and tuning of log sources and implementation of
  basic use cases in accordance with team guidelines.
  
• Contribution to the SOC knowledge base and participation in operational
  meetings and reporting when required.
  

• Bachelor’s
  degree in a technology -related field or equivalent hands -on experience.
  
• At least 2 years of experience in SOC functions / security triage and
  monitoring (Tier 1 level).
  
• Hands -on experience with SIEM solutions (preferably Microsoft Sentinel and/or
  FortiSIEM) and EDR/MDR platforms (Microsoft Defender).
  Basic knowledge of networking, operating systems, and cloud security concepts.
• Fluent in English (spoken and written); technical and management stakeholders
  must be proficient in European Portuguese.
  
• Availability to work on -site at the agreed location (hybrid work model).
  

• Entry -level/associate
  certifications (CompTIA Security+, Microsoft SC -200, or equivalent).
  
• Experience in alert and ticket management using ServiceNow.
  
• Familiarity with SOAR playbooks and response automation.
  
• Interest and aptitude to progress into Threat Hunting / Tier 2 roles.
  
• Experience in analyzing Check Point firewall logs.
  
• Practical knowledge of Linux, including the use of command -line tools for
  process analysis.
  

• Regular professional development.
  
• Certification paths resources.
  
• Regular teambuilding programs.
  
• ​Friendly workplace.
   
  

Workplace: Lisbon - Hybrid

Claranet: Make Modern Happen!