Candidatar-se agora

Função: Senior SOC Engineer

Localização:

Lisboa, PT Porto, PT

Descrição:

Do you want to join one of the largest professional services organizations on the market?

Then Deloitte is for you. Here, you'll have the chance to boost your career and strengthen your skills in our technological universe.

We're an international Tech Hub and we're looking for the best experts in Cybersecurity to join our centers of excellence and our community. At Deloitte, you will transform the world as we know it and develop unique and innovative solutions in the most varied and complex transformation projects, from Portugal to the world. We're going to strengthen our Cyber area and we're looking for experienced professionals who have a natural aptitude for working as part of a team and in a multi-project environment. You can find out all the roles you'll be fulfilling, according to your profile, so you can take a leap forward in your career!

Will you join us? We're waiting for you.

Your day by day and responsabilities:

Senior SOC Engineer is responsible for designing, implementing, optimizing, and maintaining the technologies that enable the Security Operations Center to detect, analyze, and respond to threats effectively. This role focuses on SIEM engineering, EDR tuning, SOAR automation, log ingestion, use case development, and platform reliability across cloud and on-prem environments.

SIEM Engineering

Architect, deploy, and maintain SIEM platforms.
Build and optimize data ingestion pipelines (Syslog, API, Event Hubs, Logstash, Agents).
Create detection rules using KQL, SPL, AQL, EQL, Sigma, Analytics Rules.
Implement normalization, parsing, enrichment, and correlation logic.
Ensure log source onboarding, health monitoring, and telemetry completeness.

EDR / XDR Engineering

Administer and optimize EDR Platforms.
Develop custom policies, behavioral detections, and response actions.
Monitor sensor health, coverage, and integration with SIEM/SOAR.

SOAR Automation

Design and maintain playbooks and workflows.
Automate repetitive processes such as enrichment, triage, notifications, and containment.
Integrate SOAR with ITSM tools (ServiceNow, Jira), EDR, firewalls, and threat intel platforms.

Security Engineering & Architecture

Integrate threat intelligence feeds (STIX/TAXII, MISP, Anomali).
Collaborate with threat hunters, SOC analysts, and DFIR teams to develop new detection capabilities.
Maintain documentation, architecture diagrams, and platform standards.
Ensure compliance with logs, retention, and auditing requirements (ISO 27001, SOC 2, NIST).

Operational Support

Troubleshoot log ingestion, detection failures, and platform performance issues.
Support purple team exercises and detection coverage assessments (MITRE ATT&CK mapping).
Participate in on‑call rotation for security platform escalations

Are you the one we are looking for?

Advanced knowledge of network protocols, system architectures (Linux/Windows), and cloud environments (AWS, Azure, GCP)
Deep understanding of log sources, normalization, parsing, and enrichment
Strong experience with SIEM platforms (architecture, onboarding, scaling, and performance tuning)
Design, build, and maintain SIEM infrastructure and logging pipelines
Implement log ingestion pipelines (e.g., syslog, APIs, agents) and ensure data quality
Integrate SIEM with other security tools (SOAR, EDR, Threat Intelligence platforms)
Strong scripting skills (Python, Bash and powershell) for task automation and data parsing
Apply security frameworks (MITRE ATT&CK, NIST) to develop detection use cases
Collaborate with SOC analysts to improve detection coverage and reduce false positives
Conduct gap analysis and continuously improve monitoring capabilities
Optimize SIEM queries, storage, and cost efficiency
Ensure scalability, reliability, and high availability of the SIEM platform
Bachelor’s degree or equivalent work experience (minimum 1 year in similar functions);
Relevant Cyber Security Certifications and Training is a plus;
Fluent in spoken and written English;
The ability to work on multiple projects concurrently and be committed to providing exemplary customer service;
Strong analytical and problem-solving skills;
Good communication, technical writing, and presentation skills.

Develop a career tailored to your needs

In a diverse working environment that allows for continuous development and learning;
Through a personalized career development plan (technical and functional skills/opportunities), tailored to the moment, your needs and objectives;
Participating in national and international projects with a relevant dimension and impact in this area of specialization;
Unlimited access to the largest online learning platforms (Linkedin Learning and Udemy);
Opportunity for training and certification in the latest technologies, particularly Cloud technologies.

A culture of unity

A culture of innovation and excellence that makes us leaders and trendsetters;
A friendly atmosphere of respect, trust, transparency and informality;
A network for life that connects you to the best knowledge alongside leaders and experts;
An opportunity to be part of our communities (Tech, innovation, sports and other interests) and to actively participate in social responsibility projects.

About Deloitte

At Deloitte you will never work alone. You'll have the opportunity to join a variety of transformational projects and be part of a team that will inspire you and help you develop differentiating solutions, in a dynamic and collaborative environment, where you can give your best and benefit from our well-being and flexibility initiatives. There are more than 5,500 of us in Portugal, more than 2,600 of whom work in technology, from offices and Digital Studios in Lisbon, Porto, Braga, Viseu, Coimbra and Faro and from technology hubs in Braga. In addition, our teams in Portugal have an international profile, demonstrating our strong global leadership in low code/no code, telecommunications network engineering, technological platforms for organizational transformation (ServiceNow and Apptio) and the financial services industry (Finastra, TIA and Guidewire).

If you are interested in exploring and developing your skills in any of these areas in technological solutions - software engineering, cloud, systems integration, data analytics & data science, cyber risk, telecommunications network engineering, UX design - and would like to work with technologies such as AWS, Google, Oracle, Salesforce, SAP, Mulesoft, Feedzai and SAS, among others, then you are in the right place!

Find out more at www.deloitte.com/pt/careers.

Keywords: About Deloitte; Consulting; Technology; anos de experiência.

#LI-HYBRID #LI-IF1

#TECHDTT #Experienced

Data da publicação: 29/04/2026

Candidatar-se agora

Fornecedor	Descrição	Ativado
AddThis	Estes cookies podem ser estabelecidos através do nosso site pelos nossos parceiros de publicidade: "uvc" rastreia a frequência com que um utilizador interage com o AddThis "xtc" é propriedade de AddThis. AddThis fornece widgets da web que os proprietários de sites incorporam nas suas páginas ou outro conteúdo para permitir que os visitantes criem e partilhem links para o conteúdo nas redes sociais. Eles também fazem uso dos dados colecionados para fornecer a profissionais de marketing informações de perfil para publicidade comportamental direcionada "__atrfs" é propriedade de AddThis. AddThis fornece widgets da web que os proprietários de sites incorporam nas suas páginas ou outro conteúdo para permitir que os visitantes criem e partilhem links para o conteúdo nas redes sociais. Eles também fazem uso dos dados colecionados para fornecer a profissionais de marketing informações de perfil para publicidade comportamental direcionada
Youtube	Estes cookies podem ser estabelecidos através do nosso site pelos nossos parceiros de publicidade: "CONSENT" contém informações sobre como o utilizador final usa o site e qualquer publicidade que o mesmo possa ter visto antes de visitar o referido site