We are looking for a "Threat Detection Analyst" to strengthen the cybersecurity detection capabilities of a global enterprise environment.
In this role, you will be responsible for analyzing, detecting, and mitigating cyber threats across on-premise, cloud, and hybrid infrastructures. You will design and implement advanced detection mechanisms, collaborate with multiple cybersecurity teams, and contribute to improving the organization’s overall security posture against evolving threats.
TASKS & RESPONSIBILITIES 🚀:
- Analyze and detect cyber threats and malicious activities targeting enterprise environments.
- Design and implement threat detection mechanisms across on-premise, cloud, and hybrid infrastructures.
- Perform threat hunting activities to proactively identify suspicious behavior and attack patterns.
- Collaborate closely with Threat Intelligence, Security Operations, and Incident Response teams.
- Develop and tune detection rules and behavioral analytics to improve detection accuracy and reduce false positives.
- Monitor and analyze security events from EDR, IDS/IPS, network, and cloud security tools.
- Research emerging threats, attack methodologies, and adversary techniques to enhance detection strategies.
- Automate security and detection tasks using Python, PowerShell, or Bash.
- Develop integrations and workflows using APIs and automation tools.
- Document detection logic, investigations, and recommendations for technical and non-technical stakeholders.
- Contribute to the continuous improvement of the organization’s cybersecurity posture and detection capabilities.
SKILLS 🤹:
- Minimum of 3–5 years of experience in cybersecurity roles, such as Threat Hunter, Detection Engineer, or similar positions.
- Hands-on experience with EDR solutions such as SentinelOne, CrowdStrike, FortiEDR, or Microsoft Defender for Endpoint.
- Understanding of threat intelligence frameworks such as MITRE ATT&CK; and D3FEND.
- Strong scripting and automation skills in Python, PowerShell, or Bash.
- Experience with API integrations and automated workflows.
- Hands-on experience with cloud security tools (e.g., AWS GuardDuty).
- Strong knowledge of network security concepts, including firewalls, IDS/IPS, TCP/IP, and packet analysis.
- Good understanding of Windows and Linux internals, log analysis, and common attack vectors.
- Familiarity with tools such as Zeek, Falco, Wireshark, and OSQuery.
- Strong analytical, troubleshooting, and problem-solving skills.
- Excellent communication skills and ability to collaborate with cross-functional teams.
- Fluency in English.
NICE TO HAVE:
- Experience with malware analysis tools and techniques.
- Previous experience in Threat Hunting or Detection Engineering roles.
- Experience working in international and multicultural environments.
- Strong attention to detail in rule creation and tuning.
- Proactive mindset with strong interest in continuous learning and emerging threats.
- Relevant cybersecurity certifications are a plus.
SCHEDULE 🕘
- 08/09h -17/18h from Monday to Friday (versátil)
- 4 days by remote & 1 day on-site
CONDITIONS 🌱:
- Salary package based on your profile. We will discuss it on our first call.
- Permanent Contract
- Ticket restaurant included in-office hours
- Flexible Retribution Program (Urban Sports Club)
- Learning & Development
- Friend Referral Program
Our goal is that you are well in every way!