Incident Analyst

il y a 3 semaines

Brussels, Belgique Stott and May Temps plein

Cybersecurity Incident Responder / SOAR Automation Specialist (2 consultants)Contract type: Freelance / B2BLocation: Brussels, BelgiumWork mode: Mainly onsite (90–100%)Duration: Long-term assignment - up to 3 years projectEligibility: EU nationality requiredRole OverviewA large, highly regulated international client is seeking a Cybersecurity IncidentResponder with SOAR/XSOAR automation expertise to support and enhance itssecurity operations capability.The role is hands-on and operational, combining end-to-end incident response withthe design, development, and optimisation of automated incident handlingworkflows. The successful consultant will work closely with SOC analysts, cyberdefence teams, infrastructure teams, and external stakeholders in a high-maturitysecurity environment.Key Responsibilities• Handle cybersecurity incidents end-to-end, including triage,investigation, escalation, containment, and resolution.• Define and maintain incident response procedures, automationrequirements, and playbook logic aligned with operational needs.• Design, develop, and maintain SOAR / Cortex XSOAR playbooks,integrations, and automated enrichment workflows.• Integrate SOAR workflows with security platforms such as SIEM, EDR,and cloud services.• Ensure consistent and standardised handling of recurring alert typesthrough automation and documented workflows.• Coordinate incident response activities with SOC teams, cyber defenceunits, infrastructure teams, and relevant stakeholders.• Produce high-quality incident reports, technical documentation, andoperational procedures for the internal knowledge base.• Track and report on operational KPIs (e.g. MTTH, escalation rate,false/true positive ratio, automation coverage).• Support training and knowledge transfer for analysts on incident responsemethodologies and playbook usage.• Continuously identify opportunities to improve detection quality,automation efficiency, and response effectiveness.Required Skills & Experience• University degree (Bachelor’s or Master’s) in IT, Cybersecurity, or a relatedfield.• Minimum 10 years of experience in IT/cybersecurity, with strong focuson incident response and SOC operations.• Proven hands-on experience with SOAR platforms, preferably Palo AltoCortex XSOAR.• Strong experience designing and maintaining automated incidentresponse playbooks and enrichment workflows.• Solid programming/scripting experience, particularly Python, forautomation and integration purposes.• Practical experience with:• SIEM platforms (e.g. Splunk, Azure Sentinel)• EDR solutions (e.g. Microsoft Defender, Carbon Black Cloud)• Cloud environments (AWS and/or Azure)• Exposure to container security solutions is a plus• Strong understanding of incident response methodologies and best practices.• Experience working in large, complex, or multinational environments.• Excellent analytical and problem-solving skills, with the ability to identify rootcauses and propose automation improvements.• Ability to communicate clearly with both technical and non-technicalstakeholders.• High standards for documentation, reporting, and operational consistency.Certifications (Required / Highly Preferred)• Relevant cybersecurity certifications (minimum 2), such as:• Palo Alto Cortex XSOAR• Splunk• Microsoft Security (e.g. SC-200)• AWS Security Specialty• Azure Security Engineer• Other recognised incident response or cloud security certifications

  • Incident Analyst

    il y a 3 semaines

    Brussels, Belgique Stott and May Temps plein

    Cybersecurity Incident Responder / SOAR Automation Specialist (2 consultants)Contract type: Freelance / B2BLocation: Brussels, BelgiumWork mode: Mainly onsite (90–100%)Duration: Long-term assignment - up to 3 years projectEligibility: EU nationality requiredRole OverviewA large, highly regulated international client is seeking a Cybersecurity...

  • Incident Analyst

    il y a 17 heures

    Brussels, Belgique Stott and May Temps plein

    Cybersecurity Incident Responder / SOAR Automation Specialist (2 consultants)Contract type: Freelance / B2BLocation: Brussels, BelgiumWork mode: Mainly onsite (90–100%)Duration: Long-term assignment - up to 3 years projectEligibility: EU nationality requiredRole OverviewA large, highly regulated international client is seeking a Cybersecurity...

  • Senior CSOC Analyst

    il y a 6 jours

    Brussels, Belgique Coltech Temps plein

    Senior CSOC AnalystLocation: Brussels, Belgium | Contract: 12 months | Languages: Dutch, French, English🏢 About the RoleOur client is looking for a Senior CSOC Analyst to join their Security Operations Center, safeguarding critical national infrastructure. This is a high-impact role where you will manage security incidents, improve detection and...

  • Senior CSOC Analyst

    il y a 6 jours

    Brussels, Belgique Coltech Temps plein

    Senior CSOC AnalystLocation: Brussels, Belgium | Contract: 12 months | Languages: Dutch, French, English About the RoleOur client is looking for a Senior CSOC Analyst to join their Security Operations Center, safeguarding critical national infrastructure. This is a high-impact role where you will manage security incidents, improve detection and prevention,...

  • Senior CSOC Analyst

    il y a 6 jours

    Brussels, Belgique Coltech Temps plein

    Senior CSOC AnalystLocation: Brussels, Belgium | Contract: 12 months | Languages: Dutch, French, English About the RoleOur client is looking for a Senior CSOC Analyst to join their Security Operations Center, safeguarding critical national infrastructure. This is a high-impact role where you will manage security incidents, improve detection and prevention,...

  • Cyber Threat Intelligence

    il y a 3 jours

    Brussels, Belgique EGOV Select Temps plein

    **Environment de travail** **Description des tâches** La cyberstratégie belge entend faire de la Belgique l'un des pays européens les moins cybervulnérables. En tant qu'analyste CTI, vous contribuerez de manière significative à la réalisation de cet objectif. Votre tâche principale en tant qu'analyste CTI est la collecte, l'analyse et la diffusion...

  • Senior SOC Analyst @ itsme

    il y a 3 semaines

    Brussels, Belgique Amon Temps plein

    Belgian Mobile ID, known for the innovative itsme app, is one of Europe's fastest-growing scale-ups. In 2017, itsme was founded through a unique collaboration of seven Belgian market leaders from the banking and telecommunications sectors with a clear mission: to offer a state-of-the-art digital identity solution to everyone, enabling secure and seamless...

  • Functional Analyst

    il y a 6 jours

    Brussels, Belgique Aubay Belgium Temps plein

    Functional Analyst/ Scrum/ AnalyzeWe're looking for an experienced Functional Analyst (6+ years) to join our Agile team. You'll play a key role in identifying business needs, designing cost-effective solutions aligned with enterprise architecture, and ensuring successful integration into production. This role spans solution design, functional elaboration,...

  • Functional Analyst

    il y a 6 jours

    Brussels, Belgique Aubay Belgium Temps plein

    Functional Analyst/ Scrum/ AnalyzeWe're looking for an experienced Functional Analyst (6+ years) to join our Agile team. You'll play a key role in identifying business needs, designing cost-effective solutions aligned with enterprise architecture, and ensuring successful integration into production. This role spans solution design, functional elaboration,...

  • Analyste Fonctionnel – Secteur Énergie

    il y a 2 semaines

    Brussels, Belgique eXalt Temps plein

    ⚡ Analyste Fonctionnel – Secteur Énergie📍 Bruxelles | CDIeXalt recrute un(e) Analyste Fonctionnel(le) en CDI pour intervenir sur des missions à fort impact chez nos clients (TSO, DSO, fournisseurs, traders, producteurs).C’est l’occasion idéale de mettre votre sens de l’analyse au service de projets stratégiques qui façonnent l’énergie de...