Senior Cybersecurity Engineer

Descrição do trabalho

iQube is a fast-growing and flexible consulting company, passionate about optimizing business processes and delivering smart, efficient solutions. We specialize in IT Outsourcing, supporting both national operations and international clients through a Nearshore model.

From tailor-made software development to cutting-edge Artificial Intelligence projects, we help organisations boost their digital transformation with innovation, agility, and a client-first mindset. Join us and be part of a tech-driven journey where ideas turn into impact.

Right now, we are looking for a Senior Cybersecurity Engineer to integrate our partner’s internal team, based in Lisbon.

Responsibilities include:

Act as the technical escalation point for complex incidents; directly analyze logs, events, and provide mitigation recommendations.

Conduct root cause analysis (RCA), diagnosing the origin, impact, and corrective actions for security incidents.

Develop and fine-tune advanced detection rules (e.g., using the MITRE ATT&CK framework) in SIEM and/or EDR tools.

Implement and manage automation playbooks (e.g., Playbooks in Azure Sentinel) to accelerate and optimize incident response processes.

Participate in the implementation and monitoring of security controls such as IAM, EDR, DLP, and specific cloud security protections (e.g., Azure Defender).

Provide technical guidance for SOC task execution, ensuring implementation and technical alignment with the project.

Drive continuous improvement and optimization of incident response processes within the SOC.

Perform critical vulnerability assessments within the client perimeter and coordinate mitigation actions.

Adopt an analytical approach to detect anomalies in logs and events, using complex queries in KQL (Microsoft Sentinel).

Participate in crisis management processes, supporting the response during highly critical situations.

Produce detailed technical reports on security incidents and vulnerabilities (RCA).

Develop methodologies for data and log integration, increasing SOC visibility and effectiveness.

You must have:

Bachelor's or postgraduate degree in Information Security or Cybersecurity.

Minimum of 4 years in cybersecurity, with at least 2 of those years focused on cybersecurity incident management or team management.

Fluency in English (written and spoken) is essential.

Experience with SIEM tools, especially Microsoft Sentinel (or similar solutions like Splunk or QRadar).

Experience with EDR tools (e.g., SentinelOne, CrowdStrike, Microsoft Defender).

Experience with Vulnerability Management tools (e.g., Rapid7, Tenable).

Experience in cloud security, particularly with Microsoft Azure (Azure Sentinel, Azure Defender, etc.).

Leadership skills and experience managing small teams.

Strong communication skills, with the ability to translate technical concepts.

Attention to detail and accuracy in analysis and documentation processes.

Critical thinking.

Analytical mindset to identify complex patterns and correlate security events

Availability to go to the Lisbon or Porto office 2 days per week, but it is not mandatory, as along as you are available to go to clients whenever is needed.

We value:

International Experience

Certifications: Security+, SC-200, SC-100, AZ-500.

We offer:

Salary Up to 2350€ net, depending on experience

Please send your resume to ---@--- with the job reference 'SCELP'

https://www.net-empregos.com/13807480/senior-cybersecurity-engineer/