Browse
···
Log in / Register
Job Summary: We are seeking a cybersecurity expert to manage incidents, conduct security analysis, perform threat hunting, and enhance security posture, with experience in SOAR solutions. Key Highlights: 1. Key role in incident management and security analysis. 2. Opportunity to improve detection rules and digital playbooks. 3. Advisory support for enhancing security posture. - **Devoteam is a leading European consulting firm focused on digital strategy, technology platforms, cybersecurity, and business transformation through technology.** Specializing in six key areas, we address our clients’ strategic challenges: Digital Business & Products, Data-driven Intelligence, Distributed Cloud, Business Automation, Cybersecurity, and Sustainability through Digitalization. Technology is in our DNA, and we believe it is a powerful lever for driving change and improvement—while maintaining a balance that allows us to deliver top-tier technological tools to our clients, always accompanied by the proximity and professionalism of a team acting as a trusted guide throughout the journey. Our **25 years of experience** make us an innovative, established, and mature consultancy, enabling the development of our **10\.000 professionals**, continuously certifying our consultants in the latest technologies and maintaining expertise across: Cloud, BI, Data Analytics, Business Process Excellence, Customer Relationship Management, Cybersecurity, Digital Marketing, Machine Learning, Engineering and Software Development. Devoteam has been awarded Partner of the Year 2021 by the five leading cloud providers: **AWS, Google Cloud, Microsoft, Salesforce, and ServiceNow.** In Spain, we operate in Madrid, Barcelona, Zaragoza, and Bilbao. **Your responsibilities will include:** * Incident management, validation, resolution, and monitoring. * Leveraging supplementary data sources—including threat intelligence feeds, vulnerability data, and user information—to perform enhanced correlation and analysis. * Security analysis of current and historical alerts to identify malicious activities. * Conducting event-driven threat hunting, extracting IOCs where applicable, and analyzing for related security incidents. * Isolating issues, assessing impact, and distributing corrective actions. * Providing advisory support for improving security posture, where appropriate. * Identifying opportunities to customize and enhance detection rules and digital playbooks. **Conditions:** 100% remote work, flexible start hours, summer working schedule, flexible compensation, and much more! **Requirements:** * Minimum 2–3 years of hands-on experience managing SOAR solutions (troubleshooting and content development). * Understanding of Chronicle and/or Cortex architecture. Proficiency in Python. Experience administering and troubleshooting Linux systems. * Strong technical skills. * Relevant certification. * Experience as a SOC analyst. **Preferred:** * Experience with SIEM and big data systems.
