Alter Solutions Group Logo

Alter Solutions Group

L2 CSIRT Analyst

Posted 8 Hours Ago
Be an Early Applicant
Porto
Junior
Porto
Junior
The L2 CSIRT Analyst is responsible for responding to cybersecurity incidents, managing investigations, monitoring DLP events, improving data protection policies, and escalating critical cases to L3 Analysts. The role involves analysis, providing reports, and contributing to CyberSOC use cases.
The summary above was generated by AI

Job Description

Job Description:

The L2 Computer Security Incident Response Team (CSIRT) Analyst plays a crucial role in responding to and investigating cybersecurity incidents, including Data Loss Prevention (DLP). This role is essential for promptly addressing alerts, conducting detailed incident analysis, and escalating sensitive/critical cases to the L3 CSIRT Analyst.

Main Responsibilities:

  • Manage cybersecurity investigations based on CyberSOC use cases and DLP detection systems;

  • Analyze the effectiveness of existing DLP controls and propose technical, functional, and process improvements;

  • Contribute to the development and optimization of CyberSOC use cases;

  • Monitor DLP-related events, conduct investigations, and respond to data leakage incidents according to internal procedures (including interviews with key stakeholders such as HR, Procurement, DPO, etc.);

  • Develop and improve data protection policies and rules across various systems and manage exceptions;

  • Respond to and facilitate eDiscovery requests from the IT Security, HR, Legal, and Compliance teams;

  • Maintain accurate and detailed records of incidents in the group’s GRC tool;

  • Support cybersecurity governance by providing detailed reports and KPIs;

  • Quickly escalate complex incidents to L3 CSIRT Analysts, ensuring all relevant data and preliminary findings are accurately communicated;

  • Contribute to the industrialization and formalization of Cyber Defense processes, improving their effectiveness;

  • Provide analysis and expertise on cybersecurity incidents, including root cause identification and preventive measures.

Qualifications

Technical Skills:

  • Event and incident monitoring and response (identification, alerting, and containment);

  • General cybersecurity knowledge (log analysis, endpoint security, e.g., EDR solutions);

  • Scripting languages (Python);

  • Protocol knowledge (HTTP, SMTP, etc.);

  • Experience with SIEM (Security Information and Event Management);

  • Experience with SOAR (Security Orchestration, Automation, and Response);

  • Knowledge of DLP (Data Loss Prevention) solutions.

Language Skills:

  • Fluency in English (both written and spoken) is mandatory.

Top Skills

Python

Similar Jobs

Alter Solutions Group Logo
Alter Solutions Group

L2 CSIRT analyst

3 Days Ago
Porto, PRT
Entry level
Entry level
Information Technology • Consulting
The L2 CSIRT Analyst will monitor cyber incidents, conduct investigations, and analyze data leakage events. They will enhance data protection policies, respond to eDiscovery requests, maintain incident records, and support cybersecurity governance by delivering reports. Additionally, they will escalate complex incidents and contribute to the formalization of cyber defense processes.
Top Skills: Python
Meritis Logo
Meritis

Data Engineer (M/W)

3 Days Ago
Porto, A Cidade Invicta, Porto, PRT
Mid level
Mid level
Digital Media • Consulting
As a Data Engineer at Meritis, you will develop and maintain data access services, ensure high-quality production environments, and manage technical debt while collaborating with business partners.
Top Skills: JavaScala
Meritis Logo
Meritis

Murex Support Analyst (M/W)

3 Days Ago
Porto, A Cidade Invicta, Porto, PRT
Entry level
Entry level
Digital Media • Consulting
The Murex Support Analyst will assist users in the financial sector with Murex functionalities, monitor production chains, resolve issues in collaboration with IT teams, and communicate service quality with clients.
Top Skills: Murex

What you need to know about the London Tech Scene

London isn't just a hub for established businesses; it's also a nursery for innovation. Boasting one of the most recognized fintech ecosystems in Europe, attracting billions in investments each year, London's success has made it a go-to destination for startups looking to make their mark. Top U.K. companies like Hoptin, Moneybox and Marshmallow have already made the city their base — yet fintech is just the beginning. From healthtech to renewable energy to cybersecurity and beyond, the city's startups are breaking new ground across a range of industries.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account