Devoteam Cyber Trust | SOC Analyst | Banking Sector Porto

Devoteam Cyber Trust | SOC Analyst | Banking Sector
Porto
Porto, Porto District, Portugal

Company Description

Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With over 800 experts across EMEA, we aim to make cybersecurity an enabler of business success rather than a gatekeeper. We offer an
-
- end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the digital journey of large and
- sized companies across various sectors.

Since 2009, formerly known as INTEGRITY, our Portugal-based team specializes in
- edge Managed Security Services, combining expertise and proprietary technology to effectively reduce cyber risks for our clients.

Our services include Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. Certified in ISO 27001 and ISO 9001, PCI-QSA, and members of CREST and CIS, we serve numerous clients in over 20 countries.

Job Description

We are seeking a SOC Analyst for a project in the Banking sector.

• Operate security tools used by the client and master the existing architectures.
• Possess solid knowledge in key technical areas, understanding that no one is an expert in all topics.
• Demonstrate advanced
  - solving skills and a background in cybersecurity engineering.

The candidate will be central to threat analysis, incident response, and knowledge sharing within the SOC, serving as a technical reference point for investigations and incident management.

Analysis

• Enhance and optimize correlation and log analysis rules using Splunk.
• Investigate alerts across various Tactics, Techniques, and Procedures (TTPs).
• Prioritize incidents, perform compromise assessments, and implement blocking actions.
• Conduct initial scans of malicious code using sandbox environments or manual analysis.

Incident Response

• Communicate and escalate confirmed incidents to senior management.
• Lead technical investigations, supporting junior analysts.
• Perform
  - hunting, analyzing findings to identify causes, attack methods, vulnerabilities exploited, and scope.

Knowledge Transfer

• Document investigation processes, findings, and best practices.
• Provide training and mentorship to less experienced SOC staff.

Qualifications

• Over 5 years of experience as a SOC Analyst.
• Knowledge of Security Information and Event Management (SIEM) principles.
• Proficiency with Splunk and Regex search syntax.
• Experience with Hive.
• Understanding of network and system architectures.
• Knowledge of intrusion detection probes and event log correlation tools.
• Familiarity with the Mitre Attack framework and countermeasures.
• Knowledge of information monitoring and analysis tools and methods.
• Understanding of security standards for various technologies (web servers, messaging, databases, DNS, proxies, firewalls, etc. ).
• Awareness of web application vulnerabilities.
• Knowledge of malware types (rootkits, ransomware, botnets, etc. ).
• Understanding obfuscation and persistence techniques (cryptography, packing, etc. ).
• Experience with digital investigation and analysis tools.
• Familiarity with Sandbox behavioral analysis.
• Proficiency in English.

Additional Information

Devoteam Group promotes equal opportunities,
- based advancement, and actively combats discrimination. We value diversity, which enhances our creativity, dynamism, and excellence. All vacancies are open to people with disabilities.