2 days ago
Porto, Portugal
Senior
Responsibilities
- Lead the analysis and response to security anomalies, intrusion attempts, and breaches.
- Conduct advanced threat hunting to identify undetected threats.
- Act as the senior escalation point for the SOC, providing expert analysis.
- Continuously improve incident response policies and SOC operational processes.
- Analyze and mitigate web-based security events using CDN security solutions.
- Collaborate with internal engineering and business teams through clear communication.
- Participate in an on-call rotation to respond to urgent security incidents.
Requirements
- 8+ years in Information Security, with at least 5+ years in Cyber Security Incident Response.
- Experience in host-based investigations across Windows, Linux, and network/security appliances.
- Hands-on experience analyzing security events within AWS, Azure, or other major Cloud environments.
- Knowledge of analyzing events from EDR, HIPS, DLP, IPS/IDS, and SaaS solutions.
- Proficient in managing and analyzing logs from Web Security solutions like Akamai or Cloudflare.
- Skilled in querying SIEM solutions and analyzing high-volume logs.
- Able to automate response workflows and script in Python, Bash, or PowerShell.
- Graduate in Computer Science, Cybersecurity, or equivalent practical experience.
- Experience operating SIEM platforms and developing custom detection use cases.
- Deep understanding of container security and orchestration (Kubernetes, Docker).
- Advanced knowledge of network traffic/packet analysis and network forensics.
- Relevant industry certifications such as GCIH, GCFA, GNFA, CISSP, or OSCP.
Benefits
- Health insurance for the whole family.
- Flexible working environment and well-being support.
- Extra days off and a sabbatical program.
- Training opportunities and free access to Udemy.
- Flexible benefits program.
Tech Stack
AWSAzureBashCloudflareDockerKubernetesPowerShellPython
Categories
Security