L2 SOC Analyst & OT

CyberProof is a cyber security services and platform company whose mission is to help our customers react faster and smarter – and stay ahead of security threats, by creating secure digital ecosystems. CyberProof automates processes to detect and prioritize threats early and respond rapidly and decisively.

CyberProof is part of the UST Global family. Some of the world’s largest enterprises trust us to create and maintain secure digital ecosystems using our comprehensive cyber security platform and mitigation services.

We are seeking a highly skilled and proactive

Senior SOC Analyst

with expertise in

OT

environments. In this dynamic role, you will handle escalated security incidents, enhance detection capabilities, and work collaboratively with platform teams to secure critical OT systems. Your work will directly contribute to strengthening incident response processes and improving threat detection fidelity, with a focus on platforms such as

Nozomi

and

Sentinel

Your main tasks and accountabilities will be :

Deliver comprehensive support for the handling and escalation of critical security incidents, ensuring timely and effective resolution.

Oversee and coordinate incident response and threat containment efforts in OT environments, minimizing operational impact and reducing downtime.

Provide expert recommendations for security issue isolation and remediation strategies to safeguard OT systems and infrastructure.

Collaborate with the Nozomi Networks platform team and relevant stakeholders to optimize detection rules and minimize false-positive alerts within Microsoft Sentinel.

Design, develop, and maintain advanced playbooks to streamline and automate incident response workflows for Nozomi-related security events.

Continuously refine and enhance threat detection logic while performing detailed false-positive tuning to strengthen detection accuracy and overall fidelity.

Serve as a trusted subject matter expert in OT security, offering strategic guidance and fostering collaboration across multidisciplinary teams to address complex security challenges.

What do we expect from you?

Proven experience in

SOC operations

, with a particular focus on

OT

environments.

Hands-on expertise with

Nozomi Networks

and

Azure Sentinel

platforms, including rule tuning and detection logic development.

Holding certifications in

Nozomi

is a mandatory requirement for this role.

Strong understanding of

incident response workflows

, playbook creation, and tuning processes.

Solid analytical and problem-solving abilities to effectively manage complex security incidents.

Strong communication skills, with the ability to collaborate across teams and explain technical concepts to non-technical stakeholders.

Fluent in English, Spanish and Portuguese (valuable).

What do we offer?

23 days of Annual Leave plus the 24th and 31st of December as discretionary days.

Location : Barcelona (3 days Office - 2 days WFH)

Numerous benefits (Heath Care Plan, teleworking compensation, Life and Accident Insurances).

`Retribución Flexible´ Program : (Meals, Kinder Garden, Transport, online English lessons, Heath Care Plan…)

Free access to several training platforms

Professional stability and career plans

Referral program

The option to pick between 12 or 14 payments along the year.

Real Work Life Balance measures (flexibility, WFH or remote work policy, compacted hours during summertime…)

In UST we are committed to equal opportunities in our selection processes and do not discriminate based on race, gender, disability, age, religion, sexual orientation or nationality. We have a special commitment to Disability & Inclusion, so we are interested in hiring people with disability certificate.