Submeter
SOC Engineer
Maia
Descrição da posição
We are seeking a skilled SOC Engineer to join our team, supporting our client in the retail sector.
The ideal candidate will have a strong background in Security Operations Center (SOC) environments or similar operational security roles, with expertise in a range of cybersecurity tools and practices.
This role requires analytical skills, proactive problem-solving, and a commitment to enhancing security through continuous improvement and innovation.
Responsibilities:
- Monitor and respond to security incidents within a Security Operations Center (SOC) environment, ensuring timely and effective resolution.
- Utilize SIEM tools (e.g., Google SecOps, Sentinel, QRadar) to analyze security events and detect threats.
- Deploy and manage EDR/XDR solutions (e.g., Defender for Endpoint, CrowdStrike) to protect endpoints and respond to threats.
- Implement and support ZTNA solutions and Zero Trust concepts (e.g., Zscaler) to enhance security posture.
- Configure and maintain security tools such as Firewalls, DLP, CASB, NAC, and IDS/IPS to safeguard the environment.
- Perform network protocol analysis and system administration on Windows and Linux platforms.
- Develop and maintain scripts (e.g., PowerShell, Python, Bash) to automate security tasks and improve efficiency.
- Support Identity and Access Management (IAM) practices to ensure secure access controls.
- Collaborate with cross-functional teams to drive security initiatives and incident response.
- Contribute to continuous improvement and innovation in security processes and technologies.
Requirements
Must Have:
- Bachelor’s degree in Computer Engineering, Networking, Cybersecurity, or a related field.
- Experience in SOC environments or similar operational security roles.
- Strong knowledge of:
- SIEM tools (e.g., Google SecOps, Sentinel, QRadar).
- EDR/XDR solutions (e.g., Defender for Endpoint, CrowdStrike).
- ZTNA solutions and Zero Trust concepts (e.g., Zscaler).
- Firewalls, DLP, CASB, NAC, and IDS/IPS.
- Network protocols and system administration (Windows/Linux).
- Scripting (PowerShell, Python, Bash) for task automation.
- Familiarity with Identity and Access Management (IAM) practices.
- Strong analytical skills and attention to detail.
- Proactivity and problem-solving orientation.
- Excellent communication skills and a collaborative mindset.
- Commitment to continuous improvement and innovation in cybersecurity.
Nice to Have:
- Certifications such as GIAC Security Operations Certified (GSOC), Certified Information Systems Security Professional (CISSP), or CompTIA Security+.
- Experience with cloud security in platforms like Azure, AWS, or GCP.
- Familiarity with DevOps practices or agile methodologies.
- Knowledge of additional security tools or frameworks (e.g., MITRE ATT&CK).
Quer se candidatar?
Cargo
Nome*
Email*
Telefone*
País*
Cidade*
Linkedin
Upload your CV*
(máx. 4MB)
Faça upload da sua foto ou video
(máx. 4MB)