This is a fully remote position, open to applicants in Spain.

• Design, deploy, and operate SIEM/SOAR platforms ensuring stability, scalability, performance, and cost control.

• Optimize data ingestion, retention, and processing to maximize operational efficiency and economic sustainability.

• Develop and implement SOAR automations, integrations, and CI/CD pipelines to alleviate the operational burden on the SOC.

• Collaborate with the Detection & Response teams in the design, deployment, and continuous improvement of detection use cases.

• Provide advanced technical support in production environments and complex incidents.

• Define and maintain governance, security, documentation, and best technical practices standards.

• Serve as an internal technical reference, contributing to the training and development of the team.

• Minimum of 4–6 years of experience in SOC, SIEM, or security monitoring platforms.

• Experience in cloud environments (preferably Azure) and scalable architectures.

• Degree in Computer Science, Telecommunications, Cybersecurity, or a related field.

• Relevant training and/or certifications in SIEM/SOAR platforms and cloud (Microsoft Sentinel, Azure, Splunk, etc.).

• Experience with MITRE ATT&CK is a plus.

• Familiarity with other SIEMs/SOARs/XDRs (Splunk, Devo, Cortex, etc.).

• Knowledge of CI/CD (Azure DevOps, GitLab, etc.).

• Programming skills in Python, PowerShell, or JavaScript.

• English: B2+. (We'll assess your level during the interview, so be prepared to converse🗣)

• Contract type: Permanent full-time from day one.

• Flexible Compensation Plan: meal card, transport card, health insurance, and training.

• Work-life balance: genuine flexibility in hours and intensive work schedule during the months of July, August, and the first week of September.

Senior SOC Tech & Engineering Analyst

People also viewed