Cybersecurity - Insider Threat Analyst (L1)

Lisboa, Lisboa, Portugal

WTW

Bei WTW bieten wir datengesteuerte, evidenzbasierte Lösungen in den Bereichen Mitarbeiter, Risiko und Kapital an.

View all jobs at WTW

Apply now Apply later

About WTW:

At WTW, we're more than just an advisory, broking, and solutions company – we’re a catalyst for turning risk into opportunity. Our award-winning expertise spans nearly two centuries, guiding iconic moments in history from insuring the Titanic in 1912 to supporting the Moon Buggy mission in 1971. Today, we continue to help clients worldwide pave the way for growth and success.

Our Lisbon-based Regional Delivery Hub is home to a diverse, global team of over 175 professionals, delivering operational excellence through innovative, streamlined solutions every day.

The Opportunity:

We’re on the lookout for passionate, driven individuals to join our Cyber Security team at WTW. We have an exciting opportunity for an experienced L1 Insider Threat Analyst who will play a key role in safeguarding our organization’s data and reputation. If you're looking for a chance to make a meaningful impact in a dynamic, global company, this role is for you.

Your Role as an L1 Insider Threat Analyst:

As part of the Cyber Defence team, you’ll be on the front lines of protecting WTW from insider threats. You’ll monitor and triage Insider Threat and Data Loss Prevention (DLP) alerts, ensuring that potential risks are quickly identified and escalated when necessary. Reporting to the L1 Insider Threat Manager, you'll bring your expertise in Microsoft Purview DLP to help us maintain a strong security posture.

Your Main Responsibilities:

  • Perform detailed analysis and triage of Insider Threat and DLP alerts across various channels in both cloud and on-premise environments.
  • Use cutting-edge protection tools to monitor, respond to, and escalate alerts as needed.
  • Collaborate with the Global Security Operations Centre and L2 Insider Threat team for advanced investigations.
  • Ensure adherence to security policies for consistent, compliant alert handling.
  • Analyze alert patterns to prioritize threats and contribute to fine-tuning detection tools.
  • Play a role in enhancing our operational procedures and contribute to continuous improvement efforts.
  • Support special projects and initiatives focused on strengthening data protection policies and standards.

What You Need:

To thrive in this role, you’ll need:

  • Experience in a DLP or Insider Threat Analyst role within a global enterprise.
  • Strong operational knowledge of Microsoft Purview DLP, Defender, and Insider Risk Management (IRM).
  • Exceptional analytical and triage skills to tackle complex security issues and escalate appropriately.
  • Strong communication skills and the ability to work independently within a diverse global team.
  • A history of reliability and sound decision-making in high-trust security roles.

Bonus Skills:

  • Familiarity with data protection laws (e.g., GDPR, CCPA, HIPAA).
  • Entry-level Cyber Security certifications like CompTIA Security+.
  • Hands-on experience with common security tools such as SIEM.
  • Prior experience in incident response, threat detection, or security operations.

Why WTW?

At WTW, you’ll be part of a professional yet easy-going environment, working with dynamic and inspiring colleagues in the vibrant, fast-growing city of Lisbon. We offer:

  • Work-life balance: Enjoy flexible working hours and the option to work remotely.
  • Attractive remuneration: Benefit from a competitive, performance-based salary.
  • Global reach: Be part of an international consultancy with the security of a global corporation.
  • Career development: Experience a steep learning curve with opportunities for growth and specialized training.
  • Collaborative culture: We value teamwork and shared decision-making.
  • Customer engagement: Quickly take on responsibilities and make an impact.
  • Corporate events: Celebrate successes and build connections with your team.

WTW is an equal opportunity employer. Come grow your career with us!

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  6  0  0

Tags: CCPA Cloud CompTIA GDPR HIPAA Incident response Risk management SIEM Threat detection

Perks/benefits: Career development Competitive pay Flex hours Startup environment Team events

Region: Europe
Country: Portugal

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.