Browse
···
Log in / Register
Job Summary: We are seeking a cybersecurity expert to manage, validate, and resolve incidents, analyze alerts, and provide advisory services to enhance the organization's security posture. Key Responsibilities: 1. Security incident management and resolution 2. Security analysis and threat hunting 3. Advisory services to improve security posture - **Devoteam is a leading European consulting firm focused on digital strategy, technology platforms, cybersecurity, and technology-driven business transformation.** Specializing in six key areas, we address our clients’ strategic challenges: Digital Business & Products, Data-driven Intelligence, Distributed Cloud, Business Automation, Cybersecurity, and Sustainability through Digitalization. Technology is in our DNA, and we believe in it as a lever capable of driving change for improvement—maintaining a balance that allows us to deliver top-tier technological tools to our clients, always combined with the proximity and professionalism of a team acting as a trusted guide throughout the journey. Our **25 years of experience** position us as an innovative, established, and mature consultancy, enabling the development of our **10\.000 professionals**, continuously certifying our consultants in the latest technologies and maintaining expertise across: Cloud, BI, Data Analytics, Business Process Excellence, Customer Relationship Management, Cybersecurity, Digital Marketing, Machine Learning, Software Engineering and Development. Devoteam has been awarded Partner of the Year 2021 by the five leading cloud providers: **AWS, Google Cloud, Microsoft, Salesforce, and ServiceNow.** In Spain, we operate in Madrid, Barcelona, Zaragoza, and Bilbao. **Your main responsibilities will include:** * Incident management, validation, resolution, and monitoring of detected incidents. * Use of supplementary data sources—such as threat intelligence feeds, vulnerability data, and user information—to perform enhanced correlation and analysis. * Security analysis of current and historical alerts to identify malicious activities. * Conducting event-driven threat hunting, extracting IOCs where applicable, and analyzing for other security incidents. * Problem isolation, impact assessment, and dissemination of corrective actions. * Providing advisory services to improve security posture, as appropriate. * Identifying opportunities to customize and enhance detection rules and digital playbooks. **Conditions:** 100% remote work, flexible start time, summer working hours, flexible compensation, and much more! **Requirements:** * Minimum 2–3 years of hands-on experience managing SOAR solutions (troubleshooting and content development). * Understanding of Chronicle and/or Cortex architecture; proficiency in Python; experience administering and troubleshooting Linux systems. * Strong technical skills. * Relevant certification. * Experience as a SOC analyst. **Preferred:** * Experience with SIEM and big data systems.
