Descrição da Empresa

A Olisipo é uma das principais e mais sólidas referências nacionais como talent recruiter, talent builder e talent care na área das tecnologias de informação. A nossa missão é encontrar o melhor projeto para cada pessoa e, para cada empresa, o melhor talento na área das tecnologias de informação.   #ConnectingITPeople

Descrição da Função

Profile: - Bachelor's or postgraduate degree in Cybersecurity, Information Security or a related field; - At least 5 years of professional experience in cybersecurity, with a strong focus on incident response, security architecture and technical leadership; - Deep expertise in SIEM platforms, especially Microsoft Sentinel or similar tools such as Splunk or QRadar; - Advanced hands-on knowledge of EDR solutions including Microsoft Defender, CrowdStrike or SentinelOne; - Proven experience with vulnerability management platforms (e.g., Tenable, Rapid7), including risk evaluation and remediation planning; - Solid understanding of cloud security principles, particularly within the Microsoft Azure ecosystem (Azure Sentinel, Azure Defender, IAM, etc.); - Experience leading or mentoring technical teams in SOC or incident response contexts; - Excellent communication and reporting skills, with the ability to clearly present technical findings to non-technical stakeholders; - Available to travel to client locations when necessary; - Certifications such as SC-200, SC-100, AZ-500 and Security+ will be vallued; - International exposure and a track record of working in diverse environments are a plus; - Fluency in English. Responsibilities: - Serve as a senior escalation point for high-severity security incidents, performing in-depth analysis and providing resolution strategies; - Design and optimise detection rules and threat models, using frameworks such as MITRE ATTeCK; - Develop and manage automated incident response playbooks (e.g., in Azure Sentinel), improving SOC responsiveness and efficiency; - Oversee the implementation and continuous monitoring of security controls, including EDR, IAM, DLP and cloud-based defences; - Mentor junior analysts and support technical decision-making across SOC operations; - Lead continuous improvement initiatives, enhancing processes and toolsets within the incident response lifecycle; - Coordinate vulnerability assessments, ensure risk classification and track remediation actions across client environments; - Perform advanced log correlation and anomaly detection using tools like Microsoft Sentinel and KQL; - Play an active role in crisis response, ensuring technical coordination and documentation during critical incidents; - Produce comprehensive technical reports, including root cause analyses, threat impact summaries and client-ready documentation; - Contribute strategically to the evolution of SOC services, including the integration of new technologies, automation strategies and service delivery improvements. What we offer: - Health insurance; - Free online training through the Udemy platform; - On-site and remote training at Olisipo's Learning Center; - Free certifications (after passing the exam); - Discounts at Olisipo Partners (in the areas of health and well-being, fitness, travel, among others); - Free psychological consultations; - Possibility of a salary advance, without commissions.

Localização

• Lisboa, Portugal