Noesis

We are an international technology consultancy with a thousand talents specialized in different technologies. Every day, we work together to create innovative solutions that impact society. We are in Portugal, Spain, the Netherlands, Brazil, Ireland, and the USA. It is in cultural diversity and opportunities that we find the motivation to innovate and challenge ourselves to be better.
About company

SOC Analyst (L2)

Remote

location Lisbon

date April 30, 2026

types Full-time

wage 36k-44k EUR

Apply here apply View all jobs

Noesis is looking for professionals to join its Cloud & Security area in Lisbon to integrate one of the reference SOC teams in Portugal, with the following profile:

Main Tasks and Responsibilities:

  • Proactive monitoring of intrusions, attacks, and anomalous behavior patterns;
  • Investigation and enrichment of security events;
  • Risk mitigation through rapid remediation mechanisms;
  • Coordination of incident response for SOC Analyst Junior (L1+L2) alongside other operational areas and external entities;
  • Optimization of cyber defense processes ensuring detection effectiveness and the production of appropriate KPIs;
  • Review of data sources and use cases;
  • Threat hunting based on available sources;
  • Forensic investigation and post-mortem on security incidents;
  • Monitoring of risks associated with vulnerabilities, techniques, tactics, and attack procedures, triggering visibility and mitigation measures.

Requirements:

  • Minimum experience of 2/3 years in a SOC environment in security monitoring, investigation, and incident response roles;
  • Ability to analyze events/intrusion attempts and define/apply mitigation measures;
  • Good understanding of the cybersecurity context, actors and techniques, tactics, and procedures;
  • Strong knowledge of SIEM platforms (arcsight, QRadar (preferred), Securonix, Splunk, etc..);
  • Know-how of operating systems (Linux, Windows, etc..);
  • High-level development skills (shell scripting, python, C, or similar);
  • High understanding of the cybersecurity context, actors and techniques, tactics, and procedures;
  • Knowledge of threat hunting and digital forensic analysis.

Work model: Lisbon, hybrid (2/3 times a week in the office) and during the prevention week, it is remote.

If you meet these conditions and would like to join an innovative organization that continuously invests in the training of its talents, send us your application.

Join us. Let’s innovate together!

All our recruitment and selection processes are based on equal opportunity, valuing the skills and potential of each person, and ensuring that no candidate is discriminated against based on gender, ethnicity, sexual orientation, age, religion, or physical condition.

Announcement created under Law No. 4/2019, of January 10.