Find your future role
Job title
Cyber SOC Analyst L2 - Porto
Ref no. | BHN569391 |
---|---|
Salary | €35,000 - €55,000/annum |
Location | Porto, Grande Porto |
Start date | ASAP |
Job type | Permanent |
Job status | Open |
Job summary
Matchtech is a STEM recruitment specialist, with 40 years' experience in successfully matching STEM professionals with hiring employers in multiple sectors, all over the world.
Key skills required for this role
SOC, Cybersecurity, Blue Team
Important
Join a market leading international financial institution. Be part of a creative, dynamic and flexible team. Take advantage of your experience and evolve your career.
Job description
Our client, a leading banking institution in the investment sector, is looking for a Level 2 SOC Analyst to join their Blue Team within the Security Operation Center (SOC) in Porto. The team's main activities are:
- Detection, categorization and investigation of infrastructure, applications and security incidents
- Vulnerability management on critical vulnerabilities (handling, categorization and follow-up)
- Leading incident response plans
- Follow-up of remediation plans
- Implementation of detection scenarios and treatment of associated alerts
The L2 SOC Analyst is responsible for monitoring and analyzing the organization's networks and systems on a daily basis to detect, identify, investigate, and mitigate potential threats. They must be able to identify anomalous behavior, recognize patterns of malicious activity, and take appropriate corrective action.
Main responsibilities:
Analysis:
- Participation in improving correlation and log analysis rules
- Conduct investigations and research including statistics
- Interpret or perform first level (Sandbox or manual) minimum scans on malicious codes
- Improve Threat Intelligence activity
Handling incidents:
- Creating, and managing service requests via the ticketing tools (ServiceSnow / SecOps / TheHive)
- Qualify and analyze these elements to determine the cause of the incident, the mode of operation of the attack (vulnerabilities use, tactics, technics), the scope and the perimeter of compromise
Training:
- Knowledge transferring in-house and writing documentation
In addition to their daily duties, the L2 SOC Analyst will provide recommendations for improving security posture and assist with incident response plans, policies, and procedures. Some additional responsibilities may include recommending tools or solutions, participating in audit activities, providing reporting on security events/incidents and collaborating with other teams across the organization.
Requirements
Solid knowledge with good operational experience in most of the following technical areas (not necessary all):
SIEM/SOAR
- Knowledge of the operating principles of Information Monitoring and Security Event Solutions (SIEM).
- Good experience of Splunk, Regex search syntax and theHive is a plus.
SYSTEM/NETWORK
- Good knowledge of network and system architectures
- Knowledge of the operation of intrusion detection probes and event log correlation tools
SECURITY
- Good knowledge of Mitre Attack framework and counter measures link to the technics and tactics
- Good knowledge of Information monitoring and analysis tools and methods.
- Good knowledge of the security standards for different technologies (web servers, messaging, database, DNS, proxy, firewall, etc.)
- Have a good knowledge on one or more of the following topics:
- Web application vulnerabilities
- Malware types (rootkit, ransomware, botnet, etc.)
- Obfuscation and persistence technics (cryptography, packing, etc.).
- Digital investigation/analysis tools
- SandBox behavioral
Other requirements:
- Advanced problem-solving skills and a background in cybersecurity engineering.
- Good level of English (at least B2).
- B1 (or more) in French is a nice to have.
- Ability to keep up with a demanding and fast-paced environment; Good communication skills; Good priority definition skills; Know how on implementing pedagogy methods; Ability to work in a team.
What's in it for you
- Permanent contract directly with end client
- Attractive salary (35-55k depending on seniority) + bonus + benefits
- Hybrid work mode (8 days/month in the office, flex)
- Flexible schedule
- Cover Flex (food allowance, transport, home set up, etc.)
- Medical and life insurance
- 25+3 days of holiday
- Help with relocation and visa application
- Highly challenging technical projects on an international scale