Michael Page 1. Monitoring and Detection - Ensure continuous monitoring of security controls and platforms - Detect, analyze and qualify suspicious or malicious activity - Maintain efficient and actionable detection with a low false positive rate 2. Alert Analysis and Triage - Assess and prioritize security alerts based on risk and impact - Qualify incidents and provide clear, actionable diagnostics - Escalate appropriately to the SOC or relevant IT teams 3. Security Incident Response - Actively contribute to security incident response - Support containment, mitigation and remediation actions - Coordinate with the 24/7 SOC and internal stakeholders 4. Security Posture and Continuous Improvement - Contribute to security hardening and configuration improvements - Improve detection rules and operational security controls - Leverage incident feedback to strengthen overall posture 5. Documentation and Reporting - Document incidents and security actions clearly. - Contribute to concise, risk‑oriented security reporting. 6. Microsoft 365 Security - Contribute to the secure operation of Microsoft 365 environments. - Monitor and analyze security alerts related to identity, email and collaboration usage. - Participate in Microsoft 365 security incident response. - Support configuration hardening and continuous control improvement. - Contribute to awareness initiatives around identity and email‑based risks. 7. Collaboration and Governance - Work closely with Support, Infrastructure, Cloud and Digital teams. - Interface with the 24/7 SOC and security partners. - Participate in incident simulation exercises. - Contribute to security procedures and runbooks. - Operate within the group security governance framework. 8. Security Environment - Azure Cloud and on‑prem environments. - Endpoint and workload protection (EDR/XDR). - SIEM and detection platforms. - Microsoft 365 security stack. - ZTNA, Secure Web Gateway, DLP. - Interaction with a 24/7 SOC and threat intelligence services. - Master's degree in Computer Engineering - Italian and professional fluency in English, both spoken and written (level C2) - Around 5 years of experience in SecOps, SOC, or security operations - Strong understanding of Cloud, hybrid, and collaborative environments - Solid incident detection and response mindset Multinational provider of turnkey services in the fields of telecommunications and energy, covering the engineering, deployment, installation, and maintenance of infrastructures. - Salary range between € 50-60.000 - MBO - 3 weeks of remote working per month - Health insurance Settore: Altro Ruolo: Altro