Security Operations Lead (SecOps)
Tasks
- Build ML driven detection content
- Convert TTPs into new detections
- Create LLM assisted triage workflows
- Define security operations center operating model
- Design SIEM architecture and detection architecture
- Develop SOAR playbooks
- Handle major incidents as incident commander
- Improve incident response playbooks and runbooks
- Lead SOC CSIRT team technically
- Lead threat intelligence and threat hunting
- Measure SOC performance MTTD MTTR coverage
- Mentor detection and response engineers
- Own SIEM architecture and data normalization
- Run incident response lifecycle
- Run on call and escalation models
- Run tabletop exercises for readiness
- Tune detection as code content
Perks/Benefits
- Dental insurance
- Discretionary vacation
- Equity shares
- Flexible working hours
- Health insurance
- Meal allowance
- Remote work allowance
- Snacks and beverages
- Vision insurance
- Work from home
Skills/Tech-stack
AWS | Adversary Emulation | Bash | CIS Controls | CSIRT | Call escalation | Cause analysis | Cloud Security | Detection engineering | Detection-as-code | Digital forensics | EDR | Elasticsearch | Go | Google Chronicle | Google Cloud | ISO 27001 | Identity Monitoring | Incident Response | MTTD | MTTR | MTTTD | Microsoft Sentinel | Mitre Attack | NIST SP | NIST SP 800 | NIST SP 800-61 | Network detection | On-Call | On-call escalation | Python | Query Optimization | Root Cause Analysis | Root cause | Runbook Development | SIEM | SOAR | SOC Operations | Security telemetry | Splunk | Threat Intelligence | Threat hunting | Threat modeling | XDR | “as-code”
Education
Roles
Incident Response Lead | Lead | Operations Lead | SOC Lead | Security | Security Operations Lead
Related jobs
-
AWS Security | Detection-as-code | EDR | Identity Protection | Incident ResponseContinuous learning opportunities | On-call rotationSenior-level Full TimeLisboa, Portugal R3d ago
-
Access Management | Alerting | Antivirus | Authentication Systems | BashCollaborative culture | Flexible benefits allowance | Flexible work location | Fully remote work | Health insuranceSenior-level Full TimePortugal R4d ago
-
Manager, Threat Research (Malware Triage) EUR 82K-93KBot Emulation | Botnet Analysis | Command and control | Data Quality | Detection rulesMid-level Full TimeRemote Portugal R4d ago
-
Senior-level Full TimePorto, Porto District, Portugal4d ago
-
Senior DevSecOps Engineer EUR 57K-76KAdvanced Security | Artifact Immutability | Auditability | Azure DevOps | CI/CDCareer path management | Training and certificationSenior-level Full TimeLisbon, Portugal5d ago
-
Mid-level Full TimeLisbon, Portugal6d ago
-
Application Security | CI/CD | Cloud Security | Code review | DevSecOpsFitness budget | Flexible schedule | Mentorship | Professional growth | Remote work optionsSenior-level Full TimeLisboa, Portugal10d ago
-
Application Security | Application Security Posture Management | CI/CD | Cloud Security | Code ScanningFlexible schedule | Mentorship | Office option | Professional growth | Remote work optionSenior-level Full TimeAveiro, Portugal10d ago
-
Application Security | CI/CD | Cloud Security | Code review | DevSecOpsFlexible schedule | Mentorship | Professional growth | Remote and office optionsSenior-level Full TimePorto, Portugal10d ago
-
SOC Analyst EUR 20K-20KApplication Security | CI/CD | DevOps | Incident Response | KubernetesCareer development | Flexible evolution culture | Training and certificationMid-level Full TimeLisbon, Portugal10d ago
-
SecOps Engineer EUR 40K-49KCertificates | Confluence | CrowdStrike | DNS | EDRCareer growth | Great office locations | Health insurance | Hybrid work | Life insuranceEntry-level Full TimeLisboa, PT11d ago
-
Junior Security Analyst (f/m) EUR 34K-48KActive Directory | Alert triage | DHCP | DNS | EDRGrowth opportunity in cybersecurity | Hands-on learning environment | Mentorship from senior teamEntry-level Full TimeLisboa, 11, PT12d ago
-
Mid-level Full TimeLisboa, Portugal; Lisboa12d ago
-
Senior Security Automation & Detection Engineer EUR 60K-60KCortex XSOAR | CrowdStrike | EDR/XDR | Logic Apps | Microsoft DefenderHealth and wellness support | Hybrid work model | In-office work option | Inclusive culture | Professional growth opportunitiesSenior-level Full TimeCzechia; Serbia; Romania; Poland; Portugal; Spain12d ago
-
Senior GRC & Security Assurance Specialist EUR 60K-84K800-53 | Archer | Assurance testing | Audit Readiness | Control mappingComprehensive benefits | Growth opportunities | Hybrid remote or in office flexibility | Inclusive respectful culture | Leadership visibilitySenior-level Full TimeSpain; Portugal; Poland; Romania; Serbia; Czechia12d ago
-
Senior Data Security & Cryptography Engineer EUR 84K-125KAES 256 | AWS Key Management Service | Azure Key Vault | BigID | C++Comprehensive benefits | Growth opportunities | Hybrid work model | In-office option | Inclusive cultureSenior-level Full TimeSpain; Portugal; Poland; Romania; Serbia; Czechia12d ago
-
Security Solutions Architect - IAM EUR 72K-95KAPI Gateway | API Security | AWS | Access Control | Access ManagementSenior-level Full TimePorto, Portugal17d ago
-
C# | C++ | CI/CD | Cloud Security | Container ImageSenior-level Full TimeLisboa, Lisboa, Portugal17d ago
-
Staff Product Security Engineer EUR 48K-84KAPI Security | AWS | Application Security Testing | Authentication | AuthorizationSenior-level Full TimeLisbon, Lisbon, Portugal17d ago
-
Security Monitoring Engineer EUR 61K-76KApplication Firewall | EDR | Log Management | Network Protocols | Operations CenterMid-level Full TimeLisbon, Portugal18d ago
-
Security Solutions Architect - IAM EUR 72K-95KABAC | API Gateway | API Security | AWS | Access ManagementSenior-level Full TimePortugal Remote R20d ago
-
API Security | AWS | Application Security | Cloud Security | Data ProtectionCareer coaching | Career progression | Health insurance | Meal card | Remote workSenior-level ContractLisbon24d ago
-
Access Control | Architecture Review | Audit Reporting | Cybersecurity Framework | FirewallsBuddy onboarding support | Career development feedback system | Continuous training | Extra vacation days | Health insuranceEntry-level Full TimeLisboa, Portugal24d ago
-
ARM Templates | Azure Policy | Azure RBAC | Bicep | CI/CDSenior-level Full TimeLisboa, Lisboa, Portugal26d ago
-
Senior Application Security Architect EUR 69K-91K.NET | API Security | AWS Security | Application Security | AuthenticationHome office stipend | Hybrid work system | Meal allowance | Opportunity to travel for training | Paid parental leaveSenior-level Full TimePortugal Lisbon1mo ago