We are looking for a SOC Analyst L2 to join a project at a company specializing in the management of financial markets. The ideal candidate will have solid experience in cybersecurity, with a strong focus on threat hunting and defining rules for SIEM and EDR solutions. You will play a key role in detecting, investigating, and responding to security threats, helping to maintain and improve our organization’s security posture.
Responsibilities
- Monitor security alerts and events from SIEM, EDR, IDS/IPS, firewalls, and other security tools.
- Conduct threat hunting activities to identify potential risks proactively.
- Develop, tune, and maintain detection rules in SIEM and EDR platforms.
- Investigate and triage security incidents, escalating complex cases when needed.
- Perform root cause analysis and provide actionable recommendations.
- Collaborate with IT and cybersecurity teams to implement mitigation strategies.
- Document incidents, findings, and improvements to SOC processes and playbooks.
Requirements
- Solid experience in cybersecurity, with a focus on threat hunting.
- Proven experience defining rules for SIEM and EDR solutions.
- Familiarity with incident response, threat intelligence, and security best practices.
- Strong analytical and problem-solving skills.
- Good communication skills in English.
- Ability to work in a fast-paced, 24/7 operational environment (including shift work, if required);
Benefits
- Employment Contract;
- Health Insurance;
- Meal Card;
- Gym Ticket;
- Hybrid work (Porto).