Cloud Security Operations Engineer

Cloud Security Operations Engineer
Viseu
Viseu, Viseu District, Portugal

Job Title: Security Operations Engineer



Location: Lisbon or Aveiro, Portugal



Work Regime: Full-time & Hybrid (2x office days)

Overview / Summary:

We are looking for a Security Engineer that will work closely with security, software engineering, and Dev
Ops teams, promoting secure development practices, incident response, and continuous improvement of the organization's security posture.

Responsibilities and Tasks:

• Act as a senior reference in identifying, prioritizing, and resolving security issues detected through tools such as Prisma Cloud, Microsoft Sentinel, and Snyk;
  
  
  
  
• Work in close partnership with security, software engineering, and Dev
  Ops teams to implement secure coding practices, remediate vulnerabilities, and strengthen overall security;
  
  
  
  
• Proactively monitor, analyse, and respond to security alerts and incidents, ensuring timely mitigation;
  
  
  
  
• Perform threat analysis, incident response, and vulnerability assessments, proposing practical improvements;
  
  
  
  
• Promote Dev
  Sec
  Ops adoption by integrating security controls and audits into CI/CD pipelines;
  
  
  
  
• Lead vulnerability remediation efforts with technical teams, reinforcing security best practices;
  
  
  
  
• Continuously evaluate, test, and optimise tools such as Prisma Cloud and Snyk to ensure maximum effectiveness;
  
  
  
  
• Stay up todate with security trends, vulnerabilities, regulations, and new tools, driving continuous improvement.
  
  

• +5 years of experience in IT Security, preferably in software development environments and External Footprint Reduction;
  
  
  
  
  
  
• Experience with Cloud Security Posture Management (CSPM) tools, particularly Prisma Cloud;
  
  
  
  
  
  
• Strong expertise in SIEM and SOC tools, especially Microsoft Sentinel;
  
  
  
  
  
  
• Solid knowledge of Application Security and SCA/SAST/DAST tools, with emphasis on Snyk;
  
  
  
  
  
  
• Strong understanding of Secure SDLC, Dev
  Sec
  Ops practices, and security integration into CI/CD pipelines;
  
  
  
  
• Practical experience with cloud platforms (Azure, AWS, or GCP), including identity, access, and container security;
  
  
  
  
• Expertise in vulnerability management, threat modelling, and risk assessment;
  
  
  
  
• Scripting/automation skills (Python, Power
  Shell, or similar) for
  - related tasks;
  
  
  
  
• Excellent communication skills, able to translate technical risks for development, Dev
  Ops, and product teams;
  
  
  
  
• Proficiency in English, both written and spoken;
  
  
  
  

• Our company does not sponsor work visas or work permits. All applicants must have the legal right to work in the country where the position is based.
  
  
• Only candidates who meet the required qualifications and match the profile requested by our clients will be contacted.