Security Operations Lead (SecOps)
Tasks
- Build ML driven detection content
- Convert TTPs into new detections
- Create LLM assisted triage workflows
- Define security operations center operating model
- Design SIEM architecture and detection architecture
- Develop SOAR playbooks
- Handle major incidents as incident commander
- Improve incident response playbooks and runbooks
- Lead SOC CSIRT team technically
- Lead threat intelligence and threat hunting
- Measure SOC performance MTTD MTTR coverage
- Mentor detection and response engineers
- Own SIEM architecture and data normalization
- Run incident response lifecycle
- Run on call and escalation models
- Run tabletop exercises for readiness
- Tune detection as code content
Perks/Benefits
- Dental insurance
- Discretionary vacation
- Equity shares
- Flexible working hours
- Health insurance
- Meal allowance
- Remote work allowance
- Snacks and beverages
- Vision insurance
- Work from home
Skills/Tech-stack
AWS | Adversary Emulation | Bash | CIS Controls | CSIRT | Call escalation | Cause analysis | Cloud Security | Detection engineering | Detection-as-code | Digital forensics | EDR | Elasticsearch | Go | Google Chronicle | Google Cloud | ISO 27001 | Identity Monitoring | Incident Response | MTTD | MTTR | MTTTD | Microsoft Sentinel | Mitre Attack | NIST SP | NIST SP 800 | NIST SP 800-61 | Network detection | On-Call | On-call escalation | Python | Query Optimization | Root Cause Analysis | Root cause | Runbook Development | SIEM | SOAR | SOC Operations | Security telemetry | Splunk | Threat Intelligence | Threat hunting | Threat modeling | XDR | “as-code”
Education
Roles
Incident Response Lead | Lead | Operations Lead | SOC Lead | Security | Security Operations Lead
Related jobs
-
Chief Information Security Officer (CISO) (m/f/div.) EUR 78K-102KAccess Management | Active Directory | Azure | Cloud Security | Directory architectureCanteen | Career progression | Continuous professional development | Flexible work conditions | Free parkingExecutive-level Full TimeOvar, Portugal15h ago
-
Entry-level Full TimePortugal4d ago
-
API Security | AWS | Application Security | Cloud Security | CryptographySenior-level Full TimePortugal4d ago
-
Senior Manager, Cyber Defense Operations EUR 65K-85KCrowdStrike | EDR | Incident Response | MITRE ATT&CK | MTTDComprehensive benefits | Hybrid work model | In-office option | Inclusive culture | Leadership visibilitySenior-level ContractSpain; Portugal; Poland; Romania; Serbia; Czechia4d ago
-
AWS | Behavioral Science | CI/CD | Cloud Native | ContainerizationCollaborative team activities | Corporate discounts | Dog-friendly office | Flexible hours | Local meet-upsSenior-level Full TimeLisbon R4d ago
-
Microsoft Security Specialist EUR 60K-84K365 Security | Access Control | Azure Security | Cloud Security | Endpoint SecurityHybrid workSenior-level Full TimeLisboa, Lisboa8d ago
-
Event analysis | ISO 27001 | NIST | Qualys | Security Event AnalysisCollaborative culture | Employee development | Equal opportunity | Flexible work environment | Professional developmentMid-level Full TimeLisboa, Lisboa, Portugal9d ago
-
Senior Red Team Engineer EUR 42K-84KActive Directory | Amazon Web Services | Microsoft Azure | Mitre Attack | Offensive securitySenior-level Full TimePorto, Portugal10d ago
-
Director Security Engineer | DevSecOps EUR 77K-104KAPI Gateway | API Gateway Security | AWS Security | Application Security | BSIMMCareer growth opportunities | Flexible schedule | Health insurance | Home office equipment reimbursement | Hybrid work optionsExecutive-level Full TimePortugal (Remote) R10d ago
-
Associate Director, Security Architect EUR 42K-69KAWS CSP | Amazon Web Services | Azure CSP | By Design | CASBMid-level Full TimePorto Salvo, Portugal16d ago
-
Cyber Security Senior Engineer EUR 42K-72K800-82 | Application Firewall | CIS Controls | Cloud Security | Compliance ManagementSenior-level Full TimePaco De Arcos - Q45, Portugal17d ago
-
CIS Security Engineer EUR 49K-70K800-53 | Access Management | Accreditation | Boundary Protection | CIS ControlsBenefits plan | Remote work | Work equipment providedMid-level Full TimeOeiras, Portugal17d ago
-
AWS | Access Management | Application Security | Azure | CIS ControlsHealth insurance | Meal allowance | No-term full-time contract | Paid vacation | Referral bonusSenior-level Full TimeLisbon, Portugal R21d ago
-
Security Engineer ZAR 900K-1000KAWS | AWS EKS | AWS GuardDuty | AWS Security | AWS Security HubAutonomy and empowerment | Collaborative environment | Encouraging team environment | Flexible work practices | Learning SupportMid-level Full TimeKenya; Portugal; South Africa R25d ago
-
APIs | Agent-based | Agent-based systems | Application Security | DebuggingCollaborative culture | Flexible work environment | Professional developmentMid-level Full TimeLisboa, Lisboa, Portugal25d ago
-
Purple Team Security Engineer (SIEM & Detection) EUR 60K-76KBurp Suite | Cloud Computing | CrowdStrike | Detection and Response | Endpoint Detection and ResponseHybrid workSenior-level Full TimeLisbon, Lisbon, Portugal28d ago
-
Senior-level Full TimeRemote Portugal, Portugal R29d ago
-
Blue Team Analyst N1 (On-Site) EUR 35K-48KAlert analysis | Azure | Detection engineering | Evidence collection | FortiSIEMOn-site work | Rotating shiftsEntry-level Full TimeLisbon, Lisbon, Portugal30d ago
-
Blue Team Analyst N1 EUR 34K-40KDetection engineering | Evidence collection | FortiSIEM | Incident Response | Incident TriageHybrid workEntry-level Full TimeLisbon, Lisbon, Portugal30d ago
-
Head of Cyber Security Manager EUR 66K-90KAccess Management | Amazon Web Services | Application Security | Cloud Configurations | Cloud SecurityExecutive-level Full TimeLisbon1mo ago
-
Access Controls | Audit evidence | Cloud Security | Control Validation | DORAMid-level Full TimePorto1mo ago
-
Ansible | Bash | CI/CD | Docker | GitHealth insurance | Hybrid work | Meal cardSenior-level Full TimePorto, Porto District, Portugal1mo ago
-
Security Analyst (Hybrid) EUR 38K-55KAccess Control | Audit Logs | Cloud Security | Compliance Automation | Control Frameworks401k matching | Dental insurance | Flex Time Off | Health insurance | Hybrid workMid-level Full TimePorto, Portugal R1mo ago
-
AI Security Specialist EUR 39K-67KAzure Security | C# | Conditional Access | Data encryption | Entra IDFlexible pay | Medical insurance | Unlimited access to technology trainingMid-level Full TimeLisboa, Porto1mo ago
-
Security Engineer L2/L3 EUR 38K-46KA10 | AWS | AppControl | Azure | BGPFlexible pay | Medical insurance | Training accessSenior-level Full TimeLisboa, Porto1mo ago