Incident Analyst
il y a 3 jours
Cybersecurity Incident Responder / SOAR Automation Specialist (2 consultants)Contract type: Freelance / B2BLocation: Brussels, BelgiumWork mode: Mainly onsite (90–100%)Duration: Long-term assignment - up to 3 years projectEligibility: EU nationality requiredRole OverviewA large, highly regulated international client is seeking a Cybersecurity IncidentResponder with SOAR/XSOAR automation expertise to support and enhance itssecurity operations capability.The role is hands-on and operational, combining end-to-end incident response withthe design, development, and optimisation of automated incident handlingworkflows. The successful consultant will work closely with SOC analysts, cyberdefence teams, infrastructure teams, and external stakeholders in a high-maturitysecurity environment.Key Responsibilities• Handle cybersecurity incidents end-to-end, including triage,investigation, escalation, containment, and resolution.• Define and maintain incident response procedures, automationrequirements, and playbook logic aligned with operational needs.• Design, develop, and maintain SOAR / Cortex XSOAR playbooks,integrations, and automated enrichment workflows.• Integrate SOAR workflows with security platforms such as SIEM, EDR,and cloud services.• Ensure consistent and standardised handling of recurring alert typesthrough automation and documented workflows.• Coordinate incident response activities with SOC teams, cyber defenceunits, infrastructure teams, and relevant stakeholders.• Produce high-quality incident reports, technical documentation, andoperational procedures for the internal knowledge base.• Track and report on operational KPIs (e.g. MTTH, escalation rate,false/true positive ratio, automation coverage).• Support training and knowledge transfer for analysts on incident responsemethodologies and playbook usage.• Continuously identify opportunities to improve detection quality,automation efficiency, and response effectiveness.Required Skills & Experience• University degree (Bachelor’s or Master’s) in IT, Cybersecurity, or a relatedfield.• Minimum 10 years of experience in IT/cybersecurity, with strong focuson incident response and SOC operations.• Proven hands-on experience with SOAR platforms, preferably Palo AltoCortex XSOAR.• Strong experience designing and maintaining automated incidentresponse playbooks and enrichment workflows.• Solid programming/scripting experience, particularly Python, forautomation and integration purposes.• Practical experience with:• SIEM platforms (e.g. Splunk, Azure Sentinel)• EDR solutions (e.g. Microsoft Defender, Carbon Black Cloud)• Cloud environments (AWS and/or Azure)• Exposure to container security solutions is a plus• Strong understanding of incident response methodologies and best practices.• Experience working in large, complex, or multinational environments.• Excellent analytical and problem-solving skills, with the ability to identify rootcauses and propose automation improvements.• Ability to communicate clearly with both technical and non-technicalstakeholders.• High standards for documentation, reporting, and operational consistency.Certifications (Required / Highly Preferred)• Relevant cybersecurity certifications (minimum 2), such as:• Palo Alto Cortex XSOAR• Splunk• Microsoft Security (e.g. SC-200)• AWS Security Specialty• Azure Security Engineer• Other recognised incident response or cloud security certifications
-
Incident Analyst
il y a 1 jour
Brussels, Belgique Stott and May Temps pleinCybersecurity Incident Responder / SOAR Automation Specialist (2 consultants)Contract type: Freelance / B2BLocation: Brussels, BelgiumWork mode: Mainly onsite (90–100%)Duration: Long-term assignment - up to 3 years projectEligibility: EU nationality requiredRole OverviewA large, highly regulated international client is seeking a Cybersecurity...
-
Incident Analyst
il y a 3 jours
Brussels, Belgique Stott and May Temps pleinCybersecurity Incident Responder / SOAR Automation Specialist (2 consultants)Contract type: Freelance / B2BLocation: Brussels, BelgiumWork mode: Mainly onsite (90–100%)Duration: Long-term assignment - up to 3 years projectEligibility: EU nationality requiredRole OverviewA large, highly regulated international client is seeking a Cybersecurity...
-
Cybersecurity Threat Analyst
il y a 3 semaines
Brussels, Belgique WhatJobs Temps pleinJob Title: Cybersecurity Threat Analyst We are seeking a highly skilled and experienced cybersecurity threat analyst to join our team. As a key member of our Computer Security Incident Response Team (CSIRT), you will play a vital role in detecting, analyzing, and responding to security incidents for our clients.
-
SOC Analyst Level 2
il y a 1 semaine
Brussels, Belgique Proximus Temps pleinJoin Proximus Ada ! Within this Proximus’ newly created center of excellence for AI and Cybersecurity, the mission of the Security Management and CSIRT teams is to protect Proximus, its customers, its business, its operations and reputation against external and internal threats. You will be fascinated by a highly dynamic environment, the strong...
-
Cyber Threat Intelligence
il y a 1 semaine
Brussels, Belgique EGOV Select Temps plein**Environment de travail** **Description des tâches** La cyberstratégie belge entend faire de la Belgique l'un des pays européens les moins cybervulnérables. En tant qu'analyste CTI, vous contribuerez de manière significative à la réalisation de cet objectif. Votre tâche principale en tant qu'analyste CTI est la collecte, l'analyse et la diffusion...
-
SOC Analyst
il y a 1 semaine
Brussels, Belgique ITS Group Temps pleinVos missions We are seeking a motivated and skilled Security Operations Center (SOC) Analyst who will perform a combination of Level 1 (L1) and Level 2 (L2) responsibilities. The successful candidate will monitor, triage, analyze, and respond to security events, ensuring timely detection and resolution of threats across various environments....
-
Security Operations Center Analyst
il y a 3 semaines
Brussels, Belgique Stott and May Temps pleinFirst-Line SOC Analyst (Freelance)Location: On-site — Brussels Contract Type: Freelance / Independent Contractor Eligibility: EU Nationality required (client access restriction) Start: ASAPRole Overview We are looking for a hands-on First-Line SOC Analyst to join our cybersecurity operations in Brussels. You will be working in a dynamic SOC environment...
-
Security Operations Center Analyst
il y a 6 jours
Brussels, Belgique Stott and May Temps pleinFirst-Line SOC Analyst (Freelance)Location: On-site — Brussels Contract Type: Freelance / Independent Contractor Eligibility: EU Nationality required (client access restriction) Start: ASAPRole Overview We are looking for a hands-on First-Line SOC Analyst to join our cybersecurity operations in Brussels. You will be working in a dynamic SOC environment...
-
Senior SOC Analyst @ itsme
il y a 1 jour
Brussels, Belgique Amon Temps pleinBelgian Mobile ID, known for the innovative itsme app, is one of Europe's fastest-growing scale-ups. In 2017, itsme was founded through a unique collaboration of seven Belgian market leaders from the banking and telecommunications sectors with a clear mission: to offer a state-of-the-art digital identity solution to everyone, enabling secure and seamless...
-
Support Analyst
il y a 1 semaine
Brussels, Belgique OneSpan Temps pleinAt OneSpan, we specialize in digital identity and anti-fraud solutions that create exceptional and secure experiences.OneSpan is looking for a SUPPORT ANALYST to join our team in Belgium. This position is open to candidates who have their residence in Belgium. This role is hybrid (Brussels office is where you would go to 3 days/week).The Support Analyst has...
