SOC Cybersecurity Engineer (Lisboa/Porto)

Claranet Portugal
05, August 2025
Cibersegurança
Tempo inteiro

Descrição do trabalho

We're fast learners, hard workers, natural collaborators... and we Make Modern Happen!

Our ambition is to unlock the potential of our digital world so that organisations everywhere can innovate and thrive securely

We aim to achieve this goal by bringing together the world’s most talented people and the most powerful technologies, combining them to address our customers' challenges and to build something stronger together.

If you share our vision, join us!

Right now, we are looking for a Senior Cybersecurity Engineer to integrate our internal team, based in Lisbon/Porto.

  • Your responsibilities include:
  • Analyze logs, events, and other security data to identify and respond to security incidents.
  • Participate in root cause analysis (RCA) to understand the origin and impact of security incidents.
  • Assist in the development and maintenance of detection rules in SIEM and EDR tools (like using the MITRE ATT&CK framework).
  • Contribute to the implementation and optimization of automation playbooks (like Playbooks in Azure Sentinel) to improve incident response.
  • Participate in the implementation and monitoring of security controls such as IAM, EDR, DLP, and specific cloud security protections (like Azure Defender).
  • Execute SOC tasks according to established procedures and technical guidelines.
  • Contribute to the continuous improvement of incident response processes within the SOC.
  • Perform vulnerability assessments and assist in tracking mitigation actions.
  • Use an analytical approach to detect anomalies in logs and events, using query languages like KQL (Microsoft Sentinel).
  • Participate in crisis management processes as part of the response team.
  • Produce technical reports on security incidents and vulnerabilities.
  • Assist with data and log integration projects to enhance SOC visibility.
  • You must have:
  • Bachelor's or postgraduate degree in Information Security, Cybersecurity, or a related field.
  • Minimum of 2 years of professional experience in a cybersecurity role, with a focus on security operations or incident response.
  • Fluency in English (written and spoken) is essential.
  • Experience with SIEM tools, especially Microsoft Sentinel (or similar solutions like Splunk or QRadar).
  • Experience with EDR tools (like SentinelOne, CrowdStrike, Microsoft Defender).
  • Experience with Vulnerability Management tools (e.g., Rapid7, Tenable).
  • Familiarity with cloud security concepts, particularly with Microsoft Azure (like Azure Sentinel, Azure Defender).
  • Strong communication skills, with the ability to translate technical concepts.
  • Attention to detail and accuracy in analysis and documentation processes.
  • Critical thinking and an analytical mindset to identify patterns and correlate security events.
  • We value:
  • International experience.
  • Certifications: Security+, SC-200, SC-100,AZ-500.
  • We offer:
  • Regular professional development.
  • Certification paths resources.
  • Regular team building programs.
  • Friendly workplace.

Workplace: Lisbon or Porto- Hybrid

Claranet: Make Modern Happen!

Voltar para homepage