Função: Senior SOC Analyst
Lisboa, PT Porto, PT
Do you want to join one of the largest professional services organizations on the market?
Then Deloitte is for you. Here, you'll have the chance to boost your career and strengthen your skills in our technological universe.
We're an international Tech Hub and we're looking for the best experts in Cybersecurity to join our centers of excellence and our community. At Deloitte, you will transform the world as we know it and develop unique and innovative solutions in the most varied and complex transformation projects, from Portugal to the world. We're going to strengthen our Cyber area and we're looking for experienced professionals who have a natural aptitude for working as part of a team and in a multi-project environment. You can find out all the roles you'll be fulfilling, according to your profile, so you can take a leap forward in your career!
Will you join us? We're waiting for you.
Your day by day and responsabilities:
The Senior SOC Analyst is responsible for advanced security monitoring, incident detection, investigation, and response activities within the Security Operations Center. This role focuses on hands-on analysis, handling escalated alerts and incidents, and continuously improving detection and response capabilities.
The position suits professionals with strong SOC foundations who are ready to operate independently on complex cases, contribute to detection quality, and collaborate closely with SOC engineers, threat hunters, and security leadership across on‑premises and cloud environments.
Security Monitoring & Detection
- • Monitor, triage, and analyze security alerts from SIEM, EDR/XDR, IDS/IPS, WAF, and other security platforms.
• Perform advanced analysis to validate suspicious activity and reduce false positives.
• Investigate alerts using log analysis, correlation, and contextual data.
• Contribute to the tuning and improvement of SIEM detection rules and use cases.
Incident Response & Handling
- • Handle security incidents at L2/L3 level following established incident response procedures.
• Support containment, eradication, and recovery actions for incidents such as malware, phishing, ransomware, DDoS, and unauthorized access.
• Assist in root cause analysis and post-incident reviews.
• Maintain accurate incident documentation and evidence collection.
Threat Analysis & Threat Hunting
- • Analyze malicious artifacts, network traffic, and endpoint behavior.
• Participate in threat hunting activities based on threat intelligence and MITRE ATT&CK.
• Track emerging threats and attack techniques to improve detection coverage.
SIEM & SOC Tooling
- • Operate SIEM solutions such as Splunk, Qradar, or Microsoft Sentinel.
• Validate log source coverage, alert reliability, and data quality.
• Work with SOC engineering teams to improve SOC tooling and automation.
• Support monitoring and validation of SOAR, UEBA, and CASB alerts.
Are you the one we are looking for?
- Solid understanding of network protocols (TCP/IP, DNS, HTTP/S) and both Linux & Windows environments
- Strong Understanding of security concepts (Firewalls, IDS/IPS, zero-trust)
- High Proficiency with SIEMs (e.g., Splunk, QRadar, Sentinel).
- Basic to intermediate scripting skills (Python, Bash and powershell) for task automation and data parsing.
- Ability to improve detection workflows through simple automation.
- Bachelor’s degree or equivalent work experience (minimum 1 year in similar functions);
- Relevant Cyber Security Certifications and Training is a plus;
- Fluent in spoken and written English;
- The ability to work on multiple projects concurrently and be committed to providing exemplary customer service;
- Strong analytical and problem-solving skills;
- Good communication, technical writing, and presentation skills.
Develop a career tailored to your needs
- In a diverse working environment that allows for continuous development and learning;
- Through a personalized career development plan (technical and functional skills/opportunities), tailored to the moment, your needs and objectives;
- Participating in national and international projects with a relevant dimension and impact in this area of specialization;
- Unlimited access to the largest online learning platforms (Linkedin Learning and Udemy);
- Opportunity for training and certification in the latest technologies, particularly Cloud technologies.
A culture of unity
- A culture of innovation and excellence that makes us leaders and trendsetters;
- A friendly atmosphere of respect, trust, transparency and informality;
- A network for life that connects you to the best knowledge alongside leaders and experts;
- An opportunity to be part of our communities (Tech, innovation, sports and other interests) and to actively participate in social responsibility projects.
About Deloitte
At Deloitte you will never work alone. You'll have the opportunity to join a variety of transformational projects and be part of a team that will inspire you and help you develop differentiating solutions, in a dynamic and collaborative environment, where you can give your best and benefit from our well-being and flexibility initiatives. There are more than 5,500 of us in Portugal, more than 2,600 of whom work in technology, from offices and Digital Studios in Lisbon, Porto, Braga, Viseu, Coimbra and Faro and from technology hubs in Braga. In addition, our teams in Portugal have an international profile, demonstrating our strong global leadership in low code/no code, telecommunications network engineering, technological platforms for organizational transformation (ServiceNow and Apptio) and the financial services industry (Finastra, TIA and Guidewire).
If you are interested in exploring and developing your skills in any of these areas in technological solutions - software engineering, cloud, systems integration, data analytics & data science, cyber risk, telecommunications network engineering, UX design - and would like to work with technologies such as AWS, Google, Oracle, Salesforce, SAP, Mulesoft, Feedzai and SAS, among others, then you are in the right place!
Find out more at www.deloitte.com/pt/careers.
Keywords: About Deloitte; Consulting; Technology; anos de experiência.
#LI-HYBRID #LI-IF1
#TECHDTT #Experienced