Security Incident Specialist

Join to apply for the Security Incident Specialist role at Nadara

4 months ago Be among the first 25 applicants

Join to apply for the Security Incident Specialist role at Nadara

Get AI-powered advice on this job and more exclusive features.

R0001210 Security Incident Specialist (Open)

We’re Nadara. We work harmoniously with the power of nature and the communities around us to power lifetimes to come. We call our approach ‘living energy’.

We don’t just produce renewable energy, we live it – recognising our relationship with the people touched by our business and supporting social, educational, cultural, and environmental initiatives that contribute to the development of the communities we work alongside.

Discover more about our business here : Nadara is an innovative place to work. We work in a stimulating and challenging environment, where every day we explore the unknown with curiosity, make decisions with quality and take action and deliver with courage. For us diversity is a real value, and we encourage in connecting different perspectives with respect.

Discover more about our culture and approach here : Job Description Summary

The Security Incident Specialist is responsible for ensuring robust incident management by investigating and addressing security incidents reported by or assigned to the SOC. This role involves leading incident response efforts, escalating issues to designated owners when necessary, and coordinating the implementation of Azure Security Solutions, including Azure DLP, Defender, and Defender for Cloud. Additionally, the specialist will support the development and refinement of policies and procedures to enhance Security Incident Management and Cybersecurity practices.

Job Description

The Security Incident Specialist is responsible for ensuring robust incident management by investigating and addressing security incidents reported by or assigned to the SOC. This role involves leading incident response efforts, escalating issues to designated owners when necessary, and coordinating the implementation of Azure Security Solutions, including Azure DLP, Defender, and Defender for Cloud. Additionally, the specialist will support the development and refinement of policies and procedures to enhance Security Incident Management and Cybersecurity practices.

Responsibilities

Reporting to the Cybersecurity Manager, the Security Incident Specialist is responsible for maintaining, measuring, and improving the overall Incident Management process within the assigned scope, budget, and timeline. Key responsibilities include :

• Demonstrating familiarity with Microsoft Security Solutions (Defender, Sentinel, Azure, Entra, etc.).
• Implementing Azure Security Solutions to strengthen the organization's security posture and optimize incident handling processes.
• Maintaining and developing the company’s security monitoring systems and ensuring efficient SIEM ingestion (Sentinel).
• Ensuring the proper collection of logs, alerts, and incidents for effective monitoring and response.
• Reviewing and developing analytics and playbooks for incident classification, assignment, and response automation.
• Reporting the status and outcomes of incidents and investigations to company stakeholders.
• Writing clear and comprehensive incident reports, combining logs and evidence, tailored for both C-level executives and technical teams.
• Coordinating the Incident Management process with Vulnerability Management to ensure cohesive security operations.
• Supporting initiatives to enhance secure architectures, reducing the potential threat landscape.
• Aligning the Incident Management process with organizational policies, procedures, and security guidelines.

Key Requirements

Master / Bachelor Degree on cybersecurity or computer science and 3y+ as SOC analyst, or undergraduate and 5y+ as SOC analyst

Excellent practice on

• SIEM / SOAR (Sentinel) maintenance and development
• Log collection, analysis and correlation
• Incidents investigations and response
• Malware analysis
• Phishing analysis
• File system checks and memory dump
• Ioc editing and searching

Good Practice On

• Evidence acquisition and retention
• Secops scripting (bash, vbscript, Powershell, python)
• Threat intelligence and OSINT.
• Support the cybersecurity policies and procedures definition (especially Security Incident Management)

Eager to learn, curious mind to find threats, discover backdoors, find attack vectors, talented to build and show samples for scratch

Highly effective communication skills and be capable of presenting data clearly to various audience

Ability to work within complex teams and in an international environment.

Certifications : Blue Team Level 1 (BTL1), Blue Team Level 2 (BTL2), eCTHP, eCIR, GCIH, SC-200, , AZ-500, AZ-900, Certified CyberDefender (CCD) or similar.

Experience in cybersecurity governance, including the development and alignment of policies, frameworks and compliance strategies.

What do we offer?

• A stimulating international environment. You will never get bored!
• People - centric approach. This is our one and only way of thinking!
• Stimulating challenges and growing opportunities
• The possibility to work in a team where people are passionate about their job

Location : Lisbona

Time Type

Full time

Worker Subtype

Regular

Seniority level

Seniority level

Mid-Senior level

Employment type

Employment type

Full-time

Job function

Job function

Other, Information Technology, and Management

Referrals increase your chances of interviewing at Nadara by 2x

Get notified about new Security Professional jobs in Greater Madrid Metropolitan Area .

Torrelodones, Community of Madrid, Spain 3 weeks ago

Madrid, Community of Madrid, Spain 3 months ago

Madrid, Community of Madrid, Spain 2 weeks ago

Madrid, Community of Madrid, Spain 1 month ago

Almoguera, Castile-La Mancha, Spain 1 year ago

Madrid, Community of Madrid, Spain 7 hours ago

VIGILANTE DE SEGURIDAD CON TIP EN VIGOR PARA LA ZONA DE MADRID

Madrid, Community of Madrid, Spain 7 months ago

VIGILANTE DE SEGURIDAD CON TIP MADRID (TORREJON DE ARDOZ,AZUQUECA DE HENARES,COSLADA Y MEJORADA DEL CAMPO)

Madrid, Community of Madrid, Spain 7 months ago

Leganés, Community of Madrid, Spain 1 week ago

Madrid, Community of Madrid, Spain 1 week ago

Cloud Security Specialist (GCP security)

Madrid, Community of Madrid, Spain 1 hour ago

Madrid, Community of Madrid, Spain 2 weeks ago

Cluster Security Manager & Crisis Coordinator Western Europe

Madrid, Community of Madrid, Spain 2 weeks ago

Madrid, Community of Madrid, Spain 3 months ago

Junior Cybersecurity Analyst - Remote (Spain or the UK based)

Madrid, Community of Madrid, Spain 1 month ago

SOC Analyst – International Security Profile

Madrid, Community of Madrid, Spain 2 months ago

Madrid, Community of Madrid, Spain 1 month ago

Madrid, Community of Madrid, Spain 2 hours ago

Alcobendas, Community of Madrid, Spain 3 weeks ago

Madrid, Community of Madrid, Spain 6 hours ago

Madrid, Community of Madrid, Spain 18 hours ago

Cloud Security Specialist (Azure / Office 365 security)

Madrid, Community of Madrid, Spain 1 hour ago

Madrid, Community of Madrid, Spain 1 week ago

Alcobendas, Community of Madrid, Spain 4 weeks ago

Madrid, Community of Madrid, Spain 4 months ago

Madrid, Community of Madrid, Spain 22 hours ago

Madrid, Community of Madrid, Spain 3 days ago

Madrid, Community of Madrid, Spain 22 hours ago

Madrid, Community of Madrid, Spain 2 months ago

Colmenar Viejo, Community of Madrid, Spain €24,000.00-€30,000.00 1 week ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

J-18808-Ljbffr