Cyber Security Incident Response - Senior Analyst

About Us

WTW is a leading advisory, broking, and solutions company with a storied history dating back to 1828. From the Titanic in 1912 to supporting the Moon Buggy in 1971, we have a legacy of turning risk into growth opportunities. 

Our Lisbon Regional Delivery Hub is at the heart of this innovation, with a vibrant team of 300+ professionals dedicated to excellence every day.

The Opportunity

We’re looking for a Cyber Security Incident Response Senior Analyst to join our Cyber Security Incident Response Team (CSIRT). This is a hands-on technical role for professionals with at least three years of experience in cybersecurity and incident response. You’ll be a crucial player in our Cyber Defense strategy, working closely with SOC, Threat Hunting, Cyber Threat Intelligence (CTI), and Insider Threat teams.

Your expertise will help us investigate and manage security incidents, refine processes, document incidents, and collaborate across teams to mitigate risks. With WTW’s global reach, this role offers a diverse range of challenges and occasional opportunities for international travel.

What You’ll Do

As a Cyber Security Incident Response Senior Analyst, you will:

• Investigate security incidents escalated from the SOC and ensure timely containment, eradication, and recovery.
• Develop and refine incident response processes, playbooks, and workflows.
• Analyze security events, log data, and alerts to identify potential threats.
• Collaborate with Cyber Defense teams for seamless coordination during incidents.
• Document incidents, conduct root cause analysis, and provide recommendations for improvement.
• Monitor emerging threats and vulnerabilities to enhance response capabilities.
• Ensure all incident-handling activities comply with regulations and internal policies.
• Participate in post-incident reviews and apply lessons learned to improve future responses.
• Prioritize incidents based on impact and escalate issues when necessary.
• Assist in developing automation scripts and workflows for efficiency.
• Contribute to key performance indicators (KPIs) to measure incident response effectiveness.
• Act as a bridge between technical teams and business stakeholders, ensuring clear communication.

What You’ll Bring

We’re looking for a cybersecurity professional with:

• At least 3 years of experience in incident response and cybersecurity.
• Strong skills in forensic analysis, malware analysis, and network traffic analysis.
• Experience with SIEM tools, EDR platforms, and threat intelligence integration.
• A solid grasp of MITRE ATT&CK, the cyber kill chain, and incident response frameworks.
• Excellent communication skills—able to explain complex issues to non-technical audiences.
• Relevant industry certifications (CISSP, GCIH, GCFA, or CISM) are a plus.
• Experience with platforms like Sentinel, Splunk, Carbon Black, or similar technologies.
• A proactive mindset, problem-solving ability, and adaptability under pressure.
• A collaborative spirit, with a passion for mentoring and developing team members.

Why WTW?

At WTW, we offer more than just a job—we offer a career. Here’s what you can expect:

• Work-Life Balance: Enjoy flexible working hours and hybrid working options to suit your lifestyle.
• Competitive Compensation: Benefit from an attractive, performance-related remuneration system.
• Global Exposure: Join an international consultancy with the security of a global corporation and renowned clients.
• Career Development: Experience a steep learning curve and ample opportunities for individual career growth through on-the-job learning and specialist training.
• Collaborative Culture: Work in a collegial, appreciative, and dynamic environment where decisions are made together.
• Impactful Work: Quickly take on responsibility and make an impact with direct customer contact.
• Community and Celebration: Participate in corporate events and celebrate our successes together.

Join Us!

Be part of a team that values innovation, excellence, and collaboration. At WTW, your career is more than just a job—it’s a journey. Apply now and turn your potential into success with WTW!

Willis Towers Watson is an equal opportunity employer.