Cybersecurity Analyst (Blue Team N2) – On-site

We are looking for a Cybersecurity Analyst (Blue Team N2) to strengthen our security team, with a focus on incident investigation and response, ensuring accurate technical diagnosis and effective mitigation actions.

Key Responsibilities:

• Investigate and handle security incidents escalated by the N1 team
• Perform in-depth technical analysis to identify root causes of incidents
• Execute containment, remediation, and mitigation actions across systems, networks, and security components
• Monitor and track incidents through to full resolution
• Create and optimize use cases within SIEM platforms
• Develop and maintain incident response playbooks (SOAR)
• Document procedures, solutions, and improvements in the knowledge base
• Contribute to the continuous improvement of security processes

• Proven experience in Blue Team roles (N2 or equivalent)
• Strong hands-on experience in:
  • SIEM (configuration and use case creation)
  • SOAR and response automation
  • Security playbook development
• Experience with ticketing and workflow tools (e.g., Remedy)
• Strong analytical and troubleshooting skills in a cybersecurity context
• Ability to work autonomously in incident handling and resolution
• Proactive mindset and strong sense of responsibility
• Good documentation and organizational skills
• Team-oriented mindset and collaboration skills

Nice to have:

• Security certifications such as:
  • CEH (Certified Ethical Hacker)
  • BTL1 / BTL2
  • GIAC

• Work model: On-site (Monday to Friday, 09:00 – 18:00)
• Location: Lisbon, Picoas