Cybersecurity Operations Specialist (SOC)

We are looking for a Cybersecurity Operations Specialist (SOC) to join the team of our cliente - energy sector.

What will be your main tasks and responsibilities?

1. Detection & Automation (SIEM/SOAR)

• Manage and optimize SIEM and SOAR platforms.
• Develop and fine‑tune detection use cases based on MITRE ATT&CK.
• Create and maintain automated response playbooks and workflows.
• Integrate threat intelligence and continuously improve correlation rules.
• Analyze and tune alerts, ensuring log source quality and improving MTTD/MTTR.
• 
  

2. Operations & Incident Response

• Provide technical support during incident response (analysis, mitigation, and lessons learned).
• Produce technical evidence and contribute to internal and regulatory reporting.
• Coordinate with IT, OT, and operational teams during significant incidents.
• Participate in cybersecurity exercises (Red/Blue/Purple Team, Tabletop, CTF).

3. Operational Collaboration

• Engage technically with managed security service providers (MSSP), ensuring continuous quality and improvement.
• Collaborate with Cybersecurity Architecture and Engineering teams, as well as OT security specialists.

What is required from you?

• Degree in Computer Engineering or a related field.
• Minimum of 2 years of experience in SOC, CSIRT, or equivalent roles.
• Experience operating and optimizing SIEM platforms (e.g., Splunk, Sentinel, QRadar) and SOAR tools.
• Knowledge of security technologies such as EDR, IDS/IPS, firewalls, proxies, DLP, and log management.
• Experience with Threat Intelligence and frameworks such as MITRE ATT&CK.
• Knowledge of forensic analysis is valued.
• Experience in regulated environments or the energy sector is a plus.

Sounds like you? Send us your CV and let’s talk!

#LI-SN1