About us
At Principal33 we strive to make happiness at work a reality. Because it's not just about the money, it's also about the work environment and appreciation. It's about creating the best team setup you can imagine and getting involved in the things you're passionate about. And you can be a part of it, because it's fun to get things done!
We want our employees to innovate and we allow them to do what they are truly passionate about. Based on this conviction, Principal33 aligns its strategy around its vision: to become a leading IT service company and a better working-life balance. With currently over 200 employees from different countries, we are actively shaping the future of work.
About the Job
We are looking for a skilled and experienced Cyber Security Analyst to join our in-house cyber security team. This role is ideal for someone with around 5 years of hands-on experience who enjoys working across a wide range of security disciplines — from deep-diving into security alerts to supporting broader security operations.
You will be responsible for investigating pre-triaged alerts escalated from our external SOC, working with internal teams and third-party vendors to resolve issues, and supporting continuous improvement in our cyber security posture.
Key Responsibilities
* Investigate and action security alerts that have been triaged and escalated by our third-party SOC.
* Collaborate with internal teams (IT, infrastructure, cloud, etc.) and external partners to resolve identified threats or risks.
* Handle internal service desk tickets related to phishing and malicious email reports, URL/domain block requests, risky user alerts, and general security queries.
* Support a range of security tools and platforms, including Sentinel, Microsoft Defender, Egress, CrowdStrike, Vectra, Identity & Access Management tools, and Cloud Security Posture Management solution.
* Liaise with third-party providers to coordinate and support penetration testing, network and physical security assessments.
* Track and follow up on remediation efforts across all security assessment activities, ensuring issues are addressed in a timely and effective manner.
* Oversee vulnerability management processes, ensuring that identified vulnerabilities are tracked, assigned to the appropriate teams, and remediated in a timely and effective manner. Follow up with stakeholders to drive resolution and reduce risk exposure.
* Prepare and present monthly cyber security metrics and progress reports to support risk visibility and continuous improvement.
* Contribute to the automation and improvement of security processes and technologies.
Requirements
Key Skills & Experience
* Minimum 5 years of relevant experience in a cyber security analyst or similar technical security role.
* Proven ability to investigate alerts, understand risk context, and drive resolution.
* Familiarity with working alongside external SOC teams or managed security services.
* Strong working knowledge of tools such as Microsoft Defender, Egress, CrowdStrike, Vectra, Qualys, IAM, and CSPM solutions and familiarity with relevant industry standards (e.g., ISO27001, CIS,NIST).
* Experience working cross-functionally with internal teams and third parties.
* Strong documentation and communication skills, particularly for reporting on investigations and preparing monthly metrics.
Desirable Qualifications
* Security certification (e.g., CISSP, CompTIA) is advantageous.
* Exposure to frameworks such as NIST, ISO 27001, CIS
What we offer:
Way of working: remote 100%
Please only apply if you have a valid european work-permit. Occasional business trips inside the EU might be requested.
Benefits
* Private medical insurance (applicable for candidates in Spain)
* Flexible compensation (applicable for candidates in Spain)
* Day off on your birthday
* Referral bonus if you bring your contacts
* Annual salary review based on performance
* Gifts for special occasions
* International and multicultural environment
* A free week-long accommodation annually at our corporate apartment close to Valencia, Spain (subject to availability)
(Self)-Development
Continuous training, we will help you improve your technical skills, evolve in the tech community and develop as a professional.
We are an active part of the tech-community. You may have the opportunity to attend and participate in local and international tech-events.
Wanna join!?