Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an end-to-end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and medium-sized companies from all sectors and industries.
Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing cutting-edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients.
The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries.
We are seeking a highly analytical and technically proficient Level 2 (L2) Security Operations Center (SOC) Analyst to join our team. In this role, you will act as the escalation point for complex security anomalies, conducting in-depth investigations into potential infrastructure breaches, malware outbreaks, and sophisticated cyber threats. You will bridge the gap between real-time operational defense and security architecture orchestration.
Key Responsibilities
Incident Investigation & Triage: Investigate and mitigate complex security incidents escalated by the Level 1 (L1) analyst team, ensuring meticulous technical diagnosis and root-cause analysis.
Containment & Remediation: Execute precise containment strategies, system isolation, corrective actions, and thorough post-incident tracking across servers, networks, and endpoints.
Continuous Improvement: Author and refine high-quality technical documentation, support continuous process optimization within the SOC, and consistently enrich the centralized knowledge base.
Security Orchestration: Actively utilize and orchestrate modern SIEM and SOAR platforms, designing, deploying, and optimizing automated response playbooks.
SIEM Core Expertise: Solid hands-on experience operating, querying, and extracting insights from major Enterprise SIEM platforms.
Use Case Engineering: Proven capability in creating, tuning, and implementing custom Use Cases to detect evolving threat vectors.
SOAR & Automation: Deep technical understanding and direct operational experience with SOAR technologies.
Playbook Development: Direct experience in building, mapping, and refining structural response playbooks to accelerate incident resolution times.
Valued Certifications:
CEH (Certified Ethical Hacker)
BTL1 / BTL2 (Blue Team Level 1 or 2)
GIAC (e.g., GCIH, GCIA, GMON)
The Devoteam Group works for equal opportunities, promoting its employees based on merit and actively fights against all forms of discrimination. We are convinced that diversity contributes to the creativity, dynamism and excellence of our organization. All of our vacancies are open to people with disabilities.
Devoteam is a AI-driven tech consulting firm specialised in cloud platforms, cyber, data, and sustainability.
Tech native for almost 30 years, Devoteam guides businesses through sustainable digital transformation to deliver value.
With over 11,000 tech architects in more than 25 countries across Europe, the Middle East, and Africa, Devoteam is committed to using technology to serve people.
