Cyber Security Engineer Lisboa

Cyber Security Engineer
Lisboa
Lisboa, Lisboa, Portugal

Planck Technologies is a company specialized in Software Development, dedicated to shaping futures and creating value through innovative IT solutions. By expanding teams and offering a comprehensive range of services—from Software Development and Infrastructure Management to Cybersecurity—we empower clients with all the expertise they need in one place. Inspired by the principles of quantum physics, we push beyond traditional boundaries to deliver customized solutions that redefine the IT landscape and drive shared success.

About the job

What are we looking for?

Requirements:

• Bachelor's or postgraduate degree in Information Security or Cybersecurity.
• Minimum of 3 years in cybersecurity, with at least 2 of those years focused on cybersecurity incident management or team management.
• Fluency in English (written and spoken) is essential.
• Experience with SIEM tools, especially Microsoft Sentinel (or similar solutions like Splunk or QRadar).
• Experience with EDR tools (e. g. , Sentinel
  One, Crowd
  Strike, Microsoft Defender).
• Experience with Vulnerability Management tools (e. g. , Rapid7, Tenable).
• Experience in cloud security, particularly with Microsoft Azure (Azure Sentinel, Azure Defender, etc. ).
• Leadership skills and experience managing small teams.
• Strong communication skills, with the ability to translate technical concepts.
• Attention to detail and accuracy in analysis and documentation processes.
• Critical thinking.
• Analytical mindset to identify complex patterns and correlate security events.

Job Description:

• Act as the technical escalation point for complex incidents; directly analyze logs, events, and provide mitigation recommendations.
• Conduct root cause analysis (RCA), diagnosing the origin, impact, and corrective actions for security incidents.
• Develop and
  - tune advanced detection rules (e. g. , using the MITRE ATT&CK framework) in SIEM and/or EDR tools.
• Implement and manage automation playbooks (e. g. , Playbooks in Azure Sentinel) to accelerate and optimize incident response processes.
• Participate in the implementation and monitoring of security controls such as IAM, EDR, DLP, and specific cloud security protections (e. g. , Azure Defender).
• Provide technical guidance for SOC task execution, ensuring implementation and technical alignment with the project.
• Drive continuous improvement and optimization of incident response processes within the SOC.
• Perform critical vulnerability assessments within the client perimeter and coordinate mitigation actions.
• Adopt an analytical approach to detect anomalies in logs and events, using complex queries in KQL (Microsoft Sentinel).
• Participate in crisis management processes, supporting the response during highly critical situations.
• Produce detailed technical reports on security incidents and vulnerabilities (RCA).
• Develop methodologies for data and log integration, increasing SOC visibility and effectiveness.

We value:

• International experience.
• Certifications: Security+, SC-200, SC-100, AZ-500.

Location: Hybrid, Lisbon or Porto

We're waiting for you!

Seniority level

• Seniority level

  Associate

Employment type

• Employment type

  Full-time

Job function

• Job function

  Consulting

• Industries

  IT Services and IT Consulting

Referrals increase your chances of interviewing at Planck Technologies by 2x

Sign in to set job alerts for “Cyber Security Engineer” roles.

Network and Security (Fortinet) Engineer

Associate / Pentester (Red Team) (m/f/d) - Cybersecurity Audit Portugal

Associate / Pentester (Red Team) (m/f/d) - Cybersecurity Audit

Devoteam Cyber Trust | Cyber Security Engineer

Devoteam Cyber Trust | Cyber Security Engineer

Cybersecurity Engineer - PDMFC - Lisbon, Portugal

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.