Cybersecurity Analyst

- Investigate potential security incidents. - Add context to the incident to understand the behaviour, analysing data from multiple tools and data sources. - When required perform initial triage/identification of `Events of Interest¿ using a range of monitoring and detection tools. - Participate in the crisis management by providing support to the incident handler and the SOC analysts. - Maintain the detection rules database. - Develop new detection rules. - Work on the decrease of false positives. - Track trends for metrics and reporting. - Support the SOC manager in the reporting of the activity. Requisitos del puesto: - Engineer diploma with Cybersecurity trainings or equivalent after a solid experience in the domain of Cyber defence. - Security Certifications (CEH, GCIH, GMON...) - Experience working in a SOC. - Experience with EDR tools. - TCP/IP Fundamentals. - Wireshark Packet Analysis. - Experience working with Regular Expressions. - Experience developing SIEM correlation rules. - English required. - Splunk certifications are a plus. - Eligibility to obtain Security Clearance. - It will be necessary to complete the provided Blue Team training and get certified. Formación: Ingeniero Técnico Conocimientos: ceh , edr , soc Tus beneficios: - Attractive salary. - Hybrid model of working when possible, promoting the work-life balance. - Collective transport service in some sites. - Benefits such as health insurance, employee stock options, retirement plan, or study grants. - Excellent upskilling opportunities and great development prospects in a multicultural environment.