Cybersecurity Engineer T2 Porto

Cybersecurity Engineer T2
Porto
Porto, Porto District, Portugal

We're fast learners, hard workers, natural collaborators. . . and we
Make Modern Happen

Our ambition is to unlock the potential of our digital world so that organisations everywhere can innovate and thrive securely. We aim to achieve this goal by bringing together the world's most talented people and the most powerful technologies, combining them to address our customers' challenges and to build something stronger together.

If you share our vision, join us

Right now, we are looking for a
Cybersecurity Engineer T2
to integrate our internal team, based in Porto.

Your responsibilities include:

Monitoring security alerts generated by tools such as SIEM (Microsoft Sentinel, Fortisiem, Elastic SIEM), EDR, and others;

Following defined playbooks and procedures for incident response;

Investigating low to medium complexity security incidents by collecting evidence and analyzing logs;

Escalating more complex security incidents to senior analysts (L3) or other specialized teams;

Documenting all actions taken during the analysis and response to an incident in the appropriate ticketing systems;

Contributing to the SOC's knowledge base by documenting new findings and suggesting improvements to procedures.

Mentor and train junior SOC analysts in best practices and automation technologies;

Participate in
- incident analyses and contribute to identifying root causes and improving processes.

You must have:

Academic background (equivalent to level 4+) in IT/Computer Science/Security;;

Certifications in GCIH, ECIH, CISSP, ISO27001, ITIL, OSCP, CISA, CISM, GIAC-* (Preferred);

Fluency in written and spoken English;

More than 2 years in the field of IT security;

More than 1 year in security incident management;

Experience in managing large/complex clients;

Knowledge/Experience in:

- Cybersecurity/OSINT (Open Source Intelligence)

- SIEM/monitoring tools

- Security Incident Management

- Vulnerability/Impact/Risk Assessment

- Security monitoring/controls

- Network/system administration

- Security administrat

- Digital Forensics Incident Response (DFIR) and security incident response support

We value:

Knowledge/experience with OSINT;

Knowledge/experience with SIEMs and SOARs;

Knowledge/experience with network or systems administration;

Knowledge/experience with DFIR (Digital Forensics and Incident Response);

Relevant cybersecurity certifications, such as SC-200, SSCP, Security+, CEH, ECIH, GSEC, etc.

We offer:

Regular professional development;

Certification paths resources;

Regular teambuilding programs;

Friendly workplace.

Workplace: Porto - Hybrid

Claranet: Make Modern Happen