Devoteam Cyber Trust | Incident Response |Retail & E-commerce

Company Description

Devoteam Cyber Trust is the Cybersecurity specialist arm of the Devoteam Group. With our 800+ experts located across EMEA, we aim to establish cybersecurity as an enabler of business success rather than a gatekeeper. We leverage an end-to-end approach to Cyber Resilience, Applied Security, and Managed Security services to secure the tech journey of large and medium-sized companies from all sectors and industries.

Since 2009, previously known as INTEGRITY, our team based in Portugal is specialised in providing cutting-edge Managed Security Services that combine its expertise and proprietary technology to consistently and effectively reduce the cyber risk of our clients.

The comprehensive service range includes Persistent Intrusion Testing, ISO 27001, PCI-DSS, GRC Consulting and Solutions, and Third-Party Risk Management. ISO 27001 (Information Security) and ISO 9001 (Quality) certified, PCI-QSA, and member of CREST and CIS - Centre for Internet Security, we provide services to a considerable number of clients, operating in more than 20 countries.

Job Description

• Lead or support the end-to-end incident response lifecycle, including detection, investigation, containment, eradication, and recovery.
• Perform forensic analysis and root cause investigation of security incidents.
• Collaborate with SOC, IT, and other technical teams to mitigate threats effectively.
• Analyze security alerts and incidents to determine severity, impact, and appropriate response.
• Maintain and update incident response playbooks and procedures.
• Provide clear, detailed technical reports for management and stakeholders.
• Apply knowledge of operating systems (Windows, Linux) and network security to identify and remediate threats.
• Develop scripts (Python, PowerShell, SQL) to support automation, monitoring, and analysis.
• Proven experience in vulnerability management (identification, assessment, prioritization, and mitigation).

Qualifications

Technical Requirements:

• Strong knowledge of vulnerability scanning and management tools (e.g., Qualys, Tenable, Rapid7, Nessus).
• Familiarity with security standards and frameworks (e.g., NIST, ISO 27001, CIS Controls).
• Ability to interpret and apply vulnerability classifiers (e.g., CVE, CVSS, vendor advisories).
• Experience or knowledge in incident response (investigation, containment, eradication, and recovery).
• Solid understanding of operating systems (Windows, Linux) and network fundamentals.
• Basic scripting skills (e.g., Python, PowerShell, SQL) are valued.
• Strong analytical ability to interpret technical data and translate it into actionable measures.
• Ability to prioritize risks based on impact and likelihood.

Analytical And Communication Skills:

• Excellent written and verbal communication skills for technical reporting and collaboration with multidisciplinary teams.
• Critical thinking and attention to detail.
• Bachelor’s or Master’s degree in Computer Engineering, Cybersecurity, or related fields.
• Certifications such as CompTIA Security+, CEH, OSCP, GCIA, GCIH, or CISSP are an advantage.
• Experience in corporate environments.
• Ability to work independently and collaboratively.
• Commitment to continuous learning and staying updated on new threats and vulnerabilities.

Education And Certifications (Preferred):

Additional Valued Aspects:

Additional Information

Devoteam Group works for equal opportunities, promoting its employees based on merit and actively fights against all forms of discrimination. We are convinced that diversity contributes to the creativity, dynamism and excellence of our organization. All of our vacancies are open to people with disabilities.