Noesis

We are an international technology consultancy with a thousand talents specialized in different technologies. Every day, we work together to create innovative solutions that impact society. We are in Portugal, Spain, the Netherlands, Brazil, Ireland, and the USA. It is in cultural diversity and opportunities that we find the motivation to innovate and challenge ourselves to be better.
About company

SOC Analyst (L2) - Lisbon, Hybrid

Remote

location Lisbon

date April 8, 2026

types Full-time

wage 36k-44k EUR

Apply here apply View all jobs

Noesis is looking for professionals to join its Cloud & Security area in Lisbon to integrate one of the reference SOC teams in Portugal, with the following profile:

Main Tasks and Responsibilities:

  • Proactive monitoring of intrusions, attacks, and anomalous behavior patterns;
  • Investigation and enrichment of security events;
  • Risk mitigation through rapid remediation mechanisms;
  • Coordination of SOC Analyst Junior (L1+L2) incident response together with other operational areas and external entities;
  • Optimization of cyber defense processes ensuring detection effectiveness and the production of appropriate KPIs;
  • Review of data sources and use cases;
  • Threat hunting based on available sources;
  • Forensic investigation and post-mortem in security incidents;
  • Monitoring the risk associated with vulnerabilities, attack techniques, tactics, and procedures, and triggering visibility and mitigation measures.

Requirements:

  • Minimum of 2/3 years of experience in a SOC environment in security monitoring, investigation, and incident response roles;
  • Ability to analyze events/intrusion attempts and define/apply mitigation measures;
  • Good interpretation of the context of Cybersecurity, actors, and techniques, tactics, and procedures;
  • Good knowledge of SIEM platforms (Arcsight, QRadar (preferred), Securonix, Splunk, etc.);
  • Know-how of operating systems (Linux, Windows, etc.);
  • High-level development skills (shell scripting, Python, C, or similar);
  • High knowledge of the context of Cybersecurity, actors, and techniques, tactics, and procedures;
  • Knowledge of threat hunting and digital forensic analysis.

Work Model:

Lisbon, hybrid (2/3 times a week in the office) and during the prevention week is remote.

If you meet these conditions and would like to join an innovative organization that continuously invests in the training of its talents, send us your application.

Join us. Let’s innovate together!

All our recruitment and selection processes are based on equal opportunities, valuing the competence and potential of each person and ensuring that no candidate is discriminated against based on gender, ethnicity, sexual orientation, age, religion, or physical condition.

Advertisement created under Law No. 4/2019, of January 10.

hashtag Tags
Python