Devoteam Cyber Trust - SOC Analyst L1/L2 - Cybersecurity Sector

Responsibilities

• Stay updated on emerging threats and cybersecurity best practices, continuously improving security operations and procedures
• Participate in an off-hours on-call rotation to ensure continuous security coverage
• Ensure timely resolution of security cases, operating within defined SLAs
• Produce detailed technical incident reports and communicate findings to stakeholders
• Conduct front-line investigations of security alerts, ensuring thorough analysis and coordination with partner teams
• Assess the scope and impact of security risks and drive mitigation and resolution activities
• Monitor security investigations, perform analysis, and apply remedial or protective actions
• Proactively hunt for suspicious or malicious activity using threat intelligence and advanced analytics
• Act as an escalation point for associate analysts, guiding complex cases
• Participate in the global incident response team during major incidents and contribute to post-incident reviews

Requirements

• Proven experience in Security Operations as a Tier 1/2 analyst, with end-to-end investigation experience
• Strong commitment to continuous learning and awareness of cybersecurity trends and emerging threats
• Ability to work on-call and manage time effectively in high-pressure environments
• Experience working within SLA-driven frameworks and producing high-quality technical documentation
• Intermediate knowledge of security frameworks such as NIST CSF, MITRE ATT&CK, and OWASP
• Technical proficiency in risk assessment and mitigation in complex environments
• Hands-on experience with EDR solutions, SASE providers, and Identity Protection controls
• Intermediate knowledge of the AWS Security Stack
• Familiarity with Detection-as-Code methodologies and their principles
• Experience as a senior team member or escalation point supporting junior analysts
• Experience in incident response teams, particularly in large-scale incident management
• Full professional proficiency in English and Portuguese
• Certifications such as CompTIA Security+, GCIH, GCDA, or AWS Certified Security - Specialty
• Experience with password management security or high-sensitivity identity data environments
• Experience in a fully remote, global SOC environment

Benefits

Additional Information

Devoteam Cyber Trust is seeking a highly skilled and experienced Senior Security Operations Engineer to join the team. In this role, you will operate as a high-level Tier 1/2 analyst within a dynamic Security Operations Centre (SOC), responsible for safeguarding the environment through investigation, incident response, and proactive threat hunting. The position requires combining technical execution with leadership, acting as an escalation point for associate analysts, and contributing to the security posture of a global identity management organisation.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Devoteam? Share your experience