Company DescriptionAlter Solutions Portugal is an IT Consultancy Company, promoter of Digital Transformation, part of the Alter Solutions Group, created in 2006, in Paris.In 2022, Alter Solutions joined the act digital group, constituting a global community of talent in Technology, with presence in twelve countries: Germany, Belgium, Brazil, Canada, United States of America, Morocco, Spain, France, Luxembourg, Poland, Portugal and Serbia.
Also in 2022, we were certified as a Great Place to Work.In Portugal, we partner with over 120 clients and a team of over 500 people, working in projects for industries as diverse as banking, insurance, transportation, aviation, energy, and telecom.Headquarters of the Nearshore IT center, Alter Solutions Portugal has a dedicated team of around 30 specialized professionals, integrated into projects with several internationally renowned clients.Job DescriptionMain Tasks:Handling of cyber-investigations provided by CyberSOC use-cases and DLP detection systems / Analyze the effectiveness of existing DLP controls and continuously seek improvement in technical/functional and processContribute to CyberSOC use-case development and optimizationMonitor DLP related events, conduct investigations and respond to data leakage incidents according to internal procedures (including interviews with key contributors, HR, Procurement, DPO, …)Develop and enhance data protection policies and rules across the various systems, manage exceptions Respond to and facilitating eDiscovery requests from IT SMaintain accurate and detailed records of incidents in the group GRC toolecurity, HR, Legal and Compliance - Assist in governance by delivering the details reports and KPIsContribute to cybersecurity governance, including the delivering reports and KPI related to the activity, including PCCQuick escalate complex incident to Level 3 CSIRT Analysts, ensuring that all relevant data and preliminary findings are accurately communicated to facilitate further analysisContribute to industrialization/formalization of Cyber Defense processes and effectivenessProvide analysis and expertise on cyber-incidents, including root-cause by identifying preventive measuresQualificationsTechnical Skills:Event & Incident monitoring and response (identify, alert and contain)Cybersecurity (general knowledge in logs analysis, general knowledge regarding endpoints security ( EDR solution) Scripting language (Python) Protocol knowledge (HTTP, SMTP…) SIEM (Security Information Event Monitoring) / SOAR (Security Orchestration, Automation and Response) / DLP (Data Loss Prevention)Language SkillsEnglish (fluent)Additional InformationHybrid working model in Porto.