Description: Technical Skills and Tools: SOAR: * Practical experience with D3 Security (configuration, administration, and troubleshooting) or other market SOAR solutions; * Knowledge of playbook, workflow, and automation development. Programming Languages: * Python (mandatory) for script development and customization; * Knowledge of RESTful APIs and integrations. Cybersecurity: * Familiarity with SIEM, EDR/XDR, Threat Intelligence, and log analysis; * Understanding of frameworks such as MITRE ATT&CK, NIST, ISO 27001. Education and Certifications (Mandatory): * Bachelor’s degree in Computer Science, Information Security, or related fields; Education and Certifications (Preferred): * Certifications such as: * D3SOAR Certified Professional (desirable). * Certified SOC Analyst (CSA+), GIAC (GCIH, GCFA), or CISSP. * Python for Security (or equivalent courses). Behavioral Skills: * Analytical ability to solve complex problems. * Proactivity in identifying automation opportunities. * Strong communication skills for working within multidisciplinary teams. This position is for professionals with SOAR experience—especially with D3 Security—who wish to work in a dynamic cybersecurity environment. The SOAR Support Analyst will be responsible for ensuring the operation, maintenance, and continuous optimization of the SOAR (Security Orchestration, Automation, and Response) platform, with a focus on the D3 Security tool. Key responsibilities include: Support and Operations: * Monitor, resolve incidents, and ensure SOAR platform availability; * Perform troubleshooting of automation workflows, integrations, and playbooks; * Apply updates, patches, and improvements to the platform. Automation and Development: * Develop, maintain, and optimize incident response playbooks in Python; * Integrate SOAR with other security tools (SIEM, EDR, Threat Intelligence, etc.); * Automate security processes to reduce mean time to respond (MTTR). Technical Support and Continuous Improvement: * Document procedures, configurations, and problem resolutions; * Propose improvements to SOAR architecture and efficiency; * Support SOC and CSIRT teams in using SOAR for incident response. Desired Experience: * Proven experience operating and supporting SOAR platforms, preferably with D3 Security; * Hands-on experience in security automation, playbook development, and integrations; * Knowledge of incident response and SOC workflows; * Familiarity with SIEMs (Splunk, IBM QRadar, Microsoft Sentinel, etc.). 2512240202491761584