SOC Level 1: Blue Team

We are looking for a SOC Level 1: Blue Team to join a specialized team focused on incident response and security monitoring. Be responsible for the administration, maintenance and evolution of the SOC security infrastructure and platforms, considered a key role in ensuring the availability, performance and effectiveness of defensive systems, as well as providing continuous support to monitoring and incident response teams.

Your Responsibilities:

• Administer and maintain the SOC security infrastructure and tools, including SIEM, SOAR, EDR, firewalls, and related technologies;
• Perform updates, patching, rule tuning, integrations and troubleshooting to ensure high availability and optimal performance;
• Support monitoring, automation and incident response teams, ensuring the effectiveness and reliability of defensive systems;
• Contribute to the continuous improvement of security platforms, ensuring alignment with security best practices and compliance requirements;
• Maintain technical documentation and operational procedures related to SOC tools and infrastructure.

Your Profile:

• +1/2 years of experience as a SOC level 1 analyst or similar;
• Experience with MS Windows Azure;
• Hands‑on experience with SIEM, SOAR, EDR, firewalls, and related security technologies;
• Strong knowledge of IP networks - Internet Protocol (IPv4, IPv6) and DNS;
• Analytical mindset and attention to detail;
• Enjoy working in a team, proactivity, and results orientation;
• Good level of English;
• Availability to work 24x7 shifts.

Nice to have certifications: The candidate should hold one or more of the following certifications (or demonstrate equivalent knowledge and experience).

• CompTIA Security+ or CySA+;
• Fortinet NSE 4 / 5 / 7 (preferably with a focus on FortiSIEM);
• IBM QRadar Certified Specialist;
• Microsoft SC‑200 (Microsoft Sentinel) or SC‑900;
• Rapid7 InsightIDR Specialist or official training;
• ISO 27001 Foundation;
• ITIL v4 (processes and governance);
• CCNA.

Additional information:

• Workplace type: Hybrid (max. of 3 times per week in the office);
• Location: Picoas, Lisboa.

If this challenge excites you and you’re ready to be part of a team that protects organizations from real threats, apply now — we’re looking forward to meeting you!