Description

CYBERSECURITY ANALYST

Decskill is a 100% Portuguese technological company, founded in 2014, and we currently have more than 200 employees. Decskill operates in both national and international markets, with offices in Lisbon, Oporto and A Coruña, capable to provide services to any location in the national territory.

How can Decskill be an accelerator to your career?

We currently operate in 3 major areas: outsourcing by DECSKILL; augmented reality and computer vision products and solutions, by PROSKILL; and Agile training and coaching, by GETSKILL.

The success of Decskill is built from the inside out, with talented employees and constant evolution, with innovative aspirations and a commitment to make a difference.

We are searching for a Cybersecurity Analyst to work in Porto or Lisbon!

Responsibilities:

• Perform Tier 1 and Tier 2 Security Operations Center activities such as monitoring, triaging, investigating, and responding to suspicious activity across all company assets;
• Responsible for containment and recovery of security incidents, crafting and deploying mitigation and eradication strategy;
• Perform analysis of events coming from security platforms like SIEM, IPS/IDS, EDR, Antivirus, Firewall, etc;
• Help stakeholders to determine the best course of action to remedy the problem;
• Assist with root cause analysis of security issues and documentation of lessons learned;
• Collaborate with the platform’s team in identifying use cases that leverage existing tools to enable automation and improve detection;
• Interface with internal platform’s teams and assist with general IT security as required;
• Provide remote service assistance regarding security matters using the various web-based remote support tools when necessary;
• Receive and respond to security tickets escalated by Service Desk under the information security umbrella and handle them in a timely manner;
• Provide ticket update and feedback throughout the life of the support incident;
• Perform analysis of security threats and network issues;
• Escalate high profile issues in a timely manner using a well-defined process for appropriate handling and resolution;
• Craft and deploy mitigation and eradication strategy for network and security incidents.

Requirements:

• Previous support experience working in a technology/systems department directly supporting customers;
• Current industry‐relevant certifications (Microsoft, Cisco, LPI, VMware, Citrix, CompTIA, EXIN, ISACA, ISC2, Offensive Security, etc.) would be an asset;
• Good knowledge of common client‐side productivity application suites (Microsoft Office Suite, Outlook‐Exchange environments, Office 365, etc.);
• Strong working knowledge of server‐side applications, technologies and communication models, namely Mail Server, Proxy, DNS, Virtualization, VPN, Firewall, OSI Model, DMZ, Honeypot, Directory Services, WSUS;
• Good knowledge of public cloud solutions (Azure, AWS, Google Cloud);
• Strong understanding of the incident response lifecycle at both technical and procedural level;
• Familiar with SecDevOps and desired knowledge on scripting and automation (Powershell, Shell Scripting, Python, etc.).

If you’re interested in this job please send your CV in English to [email protected] with the reference “BV/CA”.