We are looking for a Purple Team Security Engineer (SIEM & Detection) to join a Cybersecurity Operations team, with a strong focus on the development, evolution and optimization of the SIEM, continuously enhancing detection, analysis and incident response capabilities through the collaboration between offensive and defensive security approaches.
Main Responsibilities
-
Develop, configure and continuously improve the SIEM (IBM QRadar) by creating and tuning rules, correlations and use cases for effective security incident detection.
-
Perform Ethical Hacking activities within a Red Team context, leveraging the results to improve detection and response mechanisms (Blue Team).
-
Analyze, investigate and implement new security technologies and controls, ensuring the protection and monitoring of clients’ critical assets.
-
Identify and mitigate gaps in the security architecture, promoting continuous improvement of the overall security posture.
-
Provide Level 2 support to the SOC, assisting with security incident analysis, correlation and handling.
-
Support client projects from a security consulting perspective, contributing to the definition of security requirements for implemented solutions.
-
Collaborate closely with technical teams, SOC and stakeholders, ensuring accessibility, operational effectiveness and alignment with security best practices.