Cloud & Core IT Cybersecurity Architect - Hybrid (Portugal, PT) Lead and manage Cybersecurity Operations, covering SOC, security engineering, vulnerability and exposure management, identity security, and incident response. Ensure operational excellence through KPIs, SLAs, automation, and continuous improvement. Responsibilities Organize and direct security operations; leverage internaland external resources. Define service catalog, KPIs, SLAs; monitor and improve delivery. Create and refine operational processes and procedures. Act as Tier 3 focal point for major incidents. Manage MSSP/MDR performance and compliance. Drive automation, detection engineering, and operational maturity. Identity Security: Conditional Access, MFA posture, PIM/PAM, identity threat detection (Entra ID, MDI). Exposure Management: Beyond scanning – ASM, BOM/SBOM, threat-informed prioritization (EPSS, KEV). Detection Engineering: Full use case lifecycle and threat hunting cadence. Automation & Orchestration: SOAR playbooks, auto-containment, MIM runbooks. Cloud & OT/ICS Security: Interfaces for Defender for Cloud, CSPM/CWPP, OT monitoring. Data Security Ops: Integration with DLP, Insider Risk, classification signals. Business Continuity Links: DR/BCP integration for cyber scenarios; tabletop exercises. Requirements Bachelor's degree in Information Security, Computer Science, or a related field. 7+ years in Cyebersecurity Operations, including SOC and engineering services. 3+ years in a leadership role managing internal teams and external providers. Expertise in SOC, security engineering, identity security, vulnerability/exposure management, and incident handling. Strong leadership, negotiation, and vendor management skills. Ability to design service frameworks, define KPIs/SLAs, and measure performance. Fluent both in Portuguese & English. Travel availability, mainly in Europe. Key Skills Ability to work independently and make critical decisions under pressure. High accountability for service quality and incident outcomes. Strong attention to detail in processes, reporting, and compliance. Excellent communication and collaboration across technical and business teams. Analytical mindset for complex security challenges. Comfortable in dynamic environments and evolving threat landscapes. #J-18808-Ljbffr