Komodo Consulting is a technology and strategy firm specializing in Digital Transformation. Operating in Portugal and Poland, we provide IT Consulting & Nearshore services. We support both public and private sector organizations through two main areas:

- Consulting — with a focus on strategy, investment analysis, and digital process improvement;

- IT Team Augmentation — helping clients scale and strengthen their tech teams.

The Project

We are seeking a Cybersecurity Analyst to work on a project for a Technology Company.

You will have the following responsibilities:

• Own the detection lifecycle within the XDR platform, including building, maintaining, and refining rules, as well as triaging security events to assess whether an incident has taken place;

• Conduct vulnerability assessments across the infrastructure, analyse findings, produce clear reports, and drive remediation efforts in collaboration with relevant teams;

• Act as a security reference point for colleagues, promoting awareness and best practices, and partner with engineering teams to embed threat modeling into the development process;

• Support incident response activities, from containment through to recovery, documenting findings and translating lessons learned into concrete improvements using established frameworks such as MITRE ATT&CK

• Build automation scripts and tools to reduce manual effort, and apply Infrastructure as Code principles to manage and integrate security tooling at scale;

• Actively contribute to the evolution of internal security processes and evaluate emerging solutions to continuously raise the organisation's security standards.

You need to have the following skills/experience:

• At least 3 years of hands-on experience in two or more relevant cybersecurity areas;

• Hands-on experience with XDR platforms (e.g., Palo Alto, CrowdStrike), including investigating security events and building and tuning detection rules;

• Experience with vulnerability management tools (e.g., Tenable, Qualys), including scan creation, reporting, and platform auditing; knowledge of API-based automation is a plus;

• Proficiency in scripting languages such as Python or Bash for task automation;

• Solid knowledge of Linux and macOS operating systems, with a practical understanding of Windows environments;

• Familiarity with networking concepts, cloud platforms (AWS, GCP), and a strong interest in applying Infrastructure as Code (IaC) principles;

• Basic understanding of security frameworks such as MITRE ATT&CK, NIST, and CIS, and their practical application;

• Strong communication skills in English, both written and spoken;

• English proficiency at B2 level or above, with confidence communicating and collaborating in a fully English-speaking environment.

Location

Full Remote — Must be legally based in Portugal.