Devoteam Cyber Trust | Cyber Security Engineer | Telecom Sector Lisboa

Devoteam Cyber Trust | Cyber Security Engineer | Telecom Sector
Lisboa
Lisboa, Lisboa, Portugal

Company Description

Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an
-
- end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and
- sized companies from all sectors and industries.

Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing
- edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients.

The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries.

Job Description

• Monitor and analyze security events identified across various infrastructure layers, including application environments and communication systems, ensuring timely detection, assessment, and response to potential threats.
• Conduct compliance assessments and information security audits, verifying adherence to internal policies and regulatory frameworks. Evaluate security posture regularly and recommend improvements to mitigate risks and close compliance gaps.
• Manage, document, and communicate identified vulnerabilities, ensuring proper classification, prioritization, and remediation in collaboration with
  - functional teams. Maintain detailed records of incidents and resolutions to support ongoing improvement and audit readiness.
• Support security operations and governance, contributing to the definition and implementation of cybersecurity best practices, enhancing organizational resilience and reducing exposure to cyber threats.
• Provide strategic input on the development and enhancement of security monitoring tools and frameworks, aiming to improve detection capabilities and streamline response workflows.
  
  

• Security event monitoring and incident response (SIEM, log analysis)
• Vulnerability management (Qualys, Nessus, Open
  VAS, Tenable)
• Knowledge of frameworks and standards (ISO/IEC 27001, NIST, GDPR, OWASP)
• Risk assessment and mitigation planning
• Security architecture and infrastructure hardening (Cloud and On-prem)
• Use of security tools such as:
• SIEM: Splunk, ELK Stack, IBM QRadar
• Endpoint Protection: Crowd
  Strike, Sentinel
  One, Bitdefender
• Threat Intelligence: Shodan, Cycognito
• Cloud & Container Security: AWS, Azure, GCP, Docker, Kubernetes
• Basic scripting for automation (Python, Bash, Power
  Shell)