GALP - SOC Analyst

Lisbon

SOC, GCIH, ECIH, CEH, GSEC, OSCP, SIEM, SOAR

Galp is recruiting a SOC Analyst

About: Galp is an energy company committed to develop efficient and sustainable solutions in its operations and in the integrated offers provided to its clients. They create simple, flexible, and competitive solutions for the energy and mobility needs of both industrial and individual consumers. Their portfolio includes multiple types of energy - from renewable electricity to natural gas and liquid fuels. They contribute to the economic development of the 10 countries in which they operate and to the social progress of their host communities. They are, therefore, leaders in their sector in the main sustainability indexes worldwide. They are 4 geographies, 49 nationalities and more than 6.000 experiences waiting to be shared. They are looking for people with strength, passion, determination, and vision to be part of their growth. Will you accept the challenge?

 

Mission: Passionate about Cybersecurity? Seeking new challenges? Do you have analytical thinking and a problem-solving mindset?

Galp is seeking for an energetic and dynamic SOC Analyst to strengthen its Cyber Incident Management capability, responsible for monitoring, analyzing, and investigating security-relevant alerts. She/He will play a key role within the SOC/CSIRT Team, dedicated to safeguarding Galp’s environment, including Critical Infrastructure and Services, against cyber threats.

 

What you'll do:

• Analyse and investigate complex cyber related alerts escalated by L1;

• Support incident escalation to CSIRT (L3) and assess probable damages, identify damage control and remediation, and assist in developing courses of action;

• Ensure all investigative activity is properly documented in the SOAR platform;

• Develop new and maintain existing security monitoring use cases in the SIEM platform;

• Contribute to the creation and improvement of Response Playbooks;

• Continuously identify opportunities to improve security monitoring and coverage (Onboarding systems and log sources);

• Identify and share lessons learned with the purpose to improve incident management processes;

• Support L1 analysts by providing guidance, specialized knowledge and context;

• Participate in regular purple Team and Crisis Management exercises;

 

What you'll need:

• Degree in computer science, information technology, or a related field is beneficial;

• Relevant experience in network operations or helpdesk support, along with certifications, can also be considered;

• Minimum two (2) years of related work experience;

• Technical security certificates (e.g. GCIH, ECIH, CEH, GSEC, OSCP) are advantageous;

• Highly motivated individual with a genuine enthusiasm for cyber security and technology;

• Quick learner for new technologies and concepts;

• Good communication skills both written and verbal;

• Ability to prioritize workloads and to know when to seek guidance;

• Willingness to work on sporadic on-call shifts to support escalations from L1 out of business hours;

• Ability to get along well with a variety of personalities and individuals;

• Driven ability to complete assigned tasks under stressful situations;

• Knowledge of general cyber incident response principles;

• Proficiency with SIEM and SOAR is preferred;

• Sound understanding of cyber security principles and best practices;

• Good infrastructure and technology experience including demonstrable understanding of security operations;

• Security-relevant knowledge around Active Directory, Linux, Windows Server and Workstation OSs, and Could;

• Good knowledge of security issues inherent in common corporate environments;

• Knowledge of the MITRE ATT&CK Framework, Kill Chain, NIST and other security frameworks is valued;

• Verbal / written Portuguese fluent - Mandatory

• Verbal / written English fluent - Mandatory

• Verbal / written Spanish - Preferential

 

Want to know more? Get in touch with us ๐Ÿ‘‡

I allow DAMIA GROUP to store and process my personal data. My information will be handled in accordance with DAMIA GROUP Privacy Policy*
Download 2024 Benchmark
× Reach out!