Senior Incident Response Analyst (Hybrid / Porto)

Senior Incident Response Analyst (Hybrid / Porto)

Descrição da Empresa

Serviços de Recrutamento e Selecção

Descrição da Função

We are looking for a Senior Incident Response Analyst (CSIRT) to join the team of one important client. If you want to enrich your career in this area and are looking for a company that invests in your career, apply for this opportunity. Requirements • Handling of cyber-investigations provided by CyberSOC use-cases and DLP detection systems • Analyze the effectiveness of existing DLP controls and continuously seek improvement in technical/functional and process • Contribute to CyberSOC use-case development and optimization • Monitor DLP related events, conduct investigations and respond to data leakage incidents according to internal procedures (including interviews with key contributors, i.e. HR, Procurement, DPO, …) • Develop and enhance data protection policies and rules across the various systems, manage exceptions • Respond to and facilitating eDiscovery requests from IT S • Maintain accurate and detailed records of incidents in the group GRC toolecurity, HR, Legal and Compliance • Assist in governance by delivering the details reports and KPIs • Contribute to cybersecurity governance, including the delivering reports and KPI related to the activity, including PCC • Quick escalate complex incident to Level 3 CSIRT Analysts, ensuring that all relevant data and preliminary findings are accurately communicated to facilitate further analysis • Contribute to industrialization/formalization of Cyber Defense processes and effectiveness • Provide analysis and expertise on cyber-incidents, including root-cause by identifying preventive measures Technical Skills: • Event & Incident monitoring and response (identify, alert and contain) • Cybersecurity (general knowledge in logs analysis, general knowledge regarding endpoints security (e.g.: EDR solution)) • Scripting language (Python) • Protocol knowledge (HTTP, SMTP…) • SIEM (Security Information Event Monitoring) • SOAR (Security Orchestration, Automation and Response) • DLP (Data Loss Prevention) Language Skills • English: N4 - Mastery Benefits - Integration in a dynamic and motivated team for the performance of the function. - Complementary training - Salary package according to the function performed - Professional evolution

Localização

  • Porto, Portugal