Blue Team Analyst N1 (On-Site)

We are looking for a Blue Team Analyst N1 to join a security operations environment, with a strong focus on continuous security event monitoring, initial alert analysis, and execution of basic response actions. This role requires a high sense of responsibility, operational discipline, and commitment to service continuity.

Key Responsibilities:

• Continuous monitoring of security events and alerts using FortiSIEM and other correlated tools
• Initial analysis, triage, and prioritization of security incidents
• Execution of basic incident response playbooks, including:
  • Blocking suspicious access
  • Collecting evidence
  • Documenting incidents and all actions performed
• Timely escalation of relevant incidents to higher‑level teams (N2/N3)
• Contribution to the continuous improvement of detection rules and SOC processes
• Ensuring clear, complete, and auditable activity records

• Experience or practical knowledge in Blue Team / SOC N1 operations
• Experience monitoring and analyzing alerts in SIEM platforms, preferably FortiSIEM
• Basic knowledge of incident response procedures
• Familiarity with Microsoft environments, including Azure
• Understanding of security concepts in Windows systems and infrastructure
• Strong sense of responsibility and continuity
• High attention to detail and ability to follow documented procedures and playbooks
• Good analytical and prioritization skills
• Clear and objective communication
• Ability to work effectively in a team and in process‑driven environments
• Commitment to security best practices and continuous improvement
• Availability to work rotating shifts 24/7 (00-8h | 8h-16h | 16h-00h)

Desired Certifications:

• BTL1 (Blue Team Level 1)
• FortiSIEM
• CompTIA CySA+

• Workplace type: On-site
• Location: Saldanha, Lisboa