.Natixis in Portugal Global Financial Services is the global arm of Groupe BPCE. It comprises two businesses – Asset & Wealth Management and Corporate & Investment Banking – that support their clients in facing today's major environmental, technological and... Founded in 2015, BPCE Infogérance & Technologies is a subsidiary of Groupe BPCE, dedicated to Infrastructures, End-User Environment, Security and Production. Driven by growth, expertise, transformation and agility, this project embraces an international mindset and a diverse skill set. You'll find yourself in a dynamic and enriching workplace or, as we like to name it, a real tech playground, where you'll be able to explore a huge tech stack. Job Description We are looking for a Junior SOC Analyst L2 (local contract) to join our BPCE IT business Unit. Integrated within the Security Operation Center (SOC) BPCE-IT, the Blue Team is the first line of defense, responsible for defending the enterprise's use of information systems by maintaining its security posture against attackers. The main activities are the ones below: Detection, categorization and investigation of infrastructure, applications and security incidents. Vulnerability management on critical vulnerabilities (handling, categorization and follow-up). Implementation of detection scenarios and treatment of associated alerts. The Junior SOC Analyst L2 is responsible for monitoring and analyzing the organization's networks and systems on a daily basis to detect, identify, investigate, and mitigate potential threats. They must be able to identify anomalous behavior, recognize patterns of malicious activity, and take appropriate corrective action. In addition to their daily duties, the Junior Security Engineer will provide recommendations for improving security posture and assist with incident response plans, policies, and procedures. Some additional responsibilities may include recommending tools or solutions, participating in audit activities, providing reporting on security events/incidents and collaborating with other teams across the organization. Missions: The candidate will have 3 main missions: 1) Analysis: Participation in improving correlation and log analysis rules. Conduct investigations and research including statistics. Interpret or perform first level (Sandbox or manual) minimum scans on malicious codes. Improve our Threat Intelligence activity. 2) Handling incidents: Creating, and managing service requests via our ticketing tools (ServiceSnow / SecOps / TheHive). Qualify and analyze these elements to determine the cause of the incident, the mode of operation of the attack (vulnerabilities use, tactics, technics), the scope and the perimeter of compromise. 3) Training: Knowledge transferring in-house and writing documentation. Apart from these activities the candidate will have to maintain and develop his expertise: in techniques and tools of digital investigation