SOC Analyst

Your cybersecurity company

Job details

  • Full-time
  • calendar
  • map markerPorto, PT
  • cardRequires Work Permit
    Requires that you're a citizen or have a valid work permit / visa sponsorship to work in the country in which this position is based.
  • routeJunior
  • routePortuguese
    Preferred spoken language

Apply now

Sign up to apply

Or sign up to refer and earn a reward of


S21SEC offers you the possibility of joining a leading company for projects of cybersecurity with more than 16 years of proven experience and exclusive dedication (100%) to security, with more than 300 internationallyr ecognised experts in the field of cybersecurity. 20 per cent of Dow jones Erostoxx 50 are clients of S21sec. We are recognized by international analysts as one of the best security companies in the market. S21sec belongs to the international group SONAE since 2014.

S21sec is passionate of cybersecurity! Our commitment is that you enjoy working with us and continue to develop your talent working together with people with your same passion.

  • We work in a collaborative and development environment, with transparency and always seeking excellence in our work.
  • We value relationships based on honesty, teamwork, quality and leadership

S21sec require the incorporation to our project SOC Analysts Level 1 and Level 2 with professional interests and commitment to team work.

A summary of the function requirements are shortly described below:

Level 1 Analysts (Alert Analysts) - Level 1 Analysts will be responsible for the continuous monitoring of security alert stream as consolidated on the SIEM solution, security alert triage, monitoring of sensors (IDP/IPS, etc.) and endpoints health (anti-malware solution and ATP agents) and overall recollection of event data and all other relevant information required for Level 2 analysis

Level 2 Analysts (Incident Responders) - Level 2 Analysts will be responsible for the in-depth investigation of incidents via the correlation of multiple sources' information, the assessment of impacts on critical assets, the identification of remediation actions, the production of threat and vulnerability reports and the overall support to the development of new threat detection (analytics) capabilities (new signatures, etc.).

Main requirements

You must have work experience in one of the following:

  • Work experience in alert triage procedures; basic intrusion detection; basic network management; security event and incident management; host-based investigation.
  • Work experience in advanced network forensic analysis; systems forensic analysis; incident management procedures; log reviewing; malware basic analysis; evaluation of threat intelligence data

  • Experience (or certification) in ArcSight and Qradar

  • You need to be fluent in Portuguese or Spanish


  • Health, Life, Accident, Traveller insurance
  • Food

Apply now

Sign up to apply

Or sign up to refer and earn a reward of