Incident Analyst
il y a 4 jours
Cybersecurity Incident Responder / SOAR Automation Specialist (2 consultants) Contract type: Freelance / B2B Location: Brussels, Belgium Work mode: Mainly onsite (90–100%) Duration: Long-term assignment - up to 3 years project Eligibility: EU nationality required Role Overview A large, highly regulated international client is seeking a Cybersecurity Incident Responder with SOAR/XSOAR automation expertise to support and enhance its security operations capability. The role is hands-on and operational, combining end-to-end incident response with the design, development, and optimisation of automated incident handling workflows. The successful consultant will work closely with SOC analysts, cyber defence teams, infrastructure teams, and external stakeholders in a high-maturity security environment. Key Responsibilities • Handle cybersecurity incidents end-to-end, including triage, investigation, escalation, containment, and resolution. • Define and maintain incident response procedures, automation requirements, and playbook logic aligned with operational needs. • Design, develop, and maintain SOAR / Cortex XSOAR playbooks, integrations, and automated enrichment workflows. • Integrate SOAR workflows with security platforms such as SIEM, EDR, and cloud services. • Ensure consistent and standardised handling of recurring alert types through automation and documented workflows. • Coordinate incident response activities with SOC teams, cyber defence units, infrastructure teams, and relevant stakeholders. • Produce high-quality incident reports, technical documentation, and operational procedures for the internal knowledge base. • Track and report on operational KPIs (e.g. MTTH, escalation rate, false/true positive ratio, automation coverage). • Support training and knowledge transfer for analysts on incident response methodologies and playbook usage. • Continuously identify opportunities to improve detection quality, automation efficiency, and response effectiveness. Required Skills & Experience • University degree (Bachelor's or Master's) in IT, Cybersecurity, or a related field. • Minimum 10 years of experience in IT/cybersecurity, with strong focus on incident response and SOC operations. • Proven hands-on experience with SOAR platforms, preferably Palo Alto Cortex XSOAR. • Strong experience designing and maintaining automated incident response playbooks and enrichment workflows. • Solid programming/scripting experience, particularly Python, for automation and integration purposes. • Practical experience with: • SIEM platforms (e.g. Splunk, Azure Sentinel)• EDR solutions (e.g. Microsoft Defender, Carbon Black Cloud)• Cloud environments (AWS and/or Azure)• Exposure to container security solutions is a plus • Strong understanding of incident response methodologies and best practices. • Experience working in large, complex, or multinational environments. • Excellent analytical and problem-solving skills, with the ability to identify root causes and propose automation improvements. • Ability to communicate clearly with both technical and non-technical stakeholders. • High standards for documentation, reporting, and operational consistency. Certifications (Required / Highly Preferred)• Relevant cybersecurity certifications (minimum 2), such as: • Palo Alto Cortex XSOAR • Splunk • Microsoft Security (e.g. SC-200)• AWS Security Specialty • Azure Security Engineer • Other recognised incident response or cloud security certifications
-
Business Analyst
il y a 2 semaines
Bruxelles, Belgique Meritis | B CorpTM Temps pleinBusiness Analyst - Incident Management & Operational Excellence MERITIS is growing to deepen our collaboration with one of our most trusted long-standing clients, an international financial institution that depends on our expertise to drive operational excellence across Europe. About the Role As part of our mission to deliver excellence for a key client, we...
-
Senior Pensions Analyst
il y a 4 jours
Bruxelles, Belgique Stott and May Temps pleinCybersecurity Incident Responder / SOAR Automation Specialist (2 consultants) Contract type: Freelance / B2B Location: Brussels, Belgium Work mode: Mainly onsite (90–100%) Duration: Long-term assignment - up to 3 years project Eligibility: EU nationality required Role Overview A large, highly regulated international client is seeking a...
-
SOC Analyst
il y a 2 semaines
Bruxelles, Belgique Koda Staff Temps pleinWe're Hiring: SOC Analyst Hybrid (Brussels Based) Long Term Freelance Contract What You'll Do: Monitor and detect security events through the SOC platforms (SIEM, EDR, XDR). Lead or support containment, investigation, and remediation of security incidents. Help fine-tune detection rules and optimize the SOC workflow. Preparing and maintaining SOC procedures,...
-
Senior SOC Analyst @ itsme
il y a 12 heures
Bruxelles, Belgique Amon Temps pleinBelgian Mobile ID, known for the innovative itsme app, is one of Europe's fastest-growing scale-ups. In 2017, itsme was founded through a unique collaboration of seven Belgian market leaders from the banking and telecommunications sectors with a clear mission: to offer a state-of-the-art digital identity solution to everyone, enabling secure and seamless...
-
Security Operations Center Analyst
il y a 2 semaines
Bruxelles, Belgique Stott and May Temps pleinFirst-Line SOC Analyst (Freelance) Location: On-site — Brussels Contract Type: Freelance / Independent Contractor Eligibility: EU Nationality required (client access restriction) Start: ASAP Role Overview We are looking for a hands-on First-Line SOC Analyst to join our cybersecurity operations in Brussels. You will be working in a dynamic SOC environment...
-
Information Technology Business Analyst
il y a 2 semaines
Bruxelles, Belgique Meritis | B CorpTM Temps pleinBusiness Analyst - Incident Management & Operational Excellence MERITIS is growing to deepen our collaboration with one of our most trusted long-standing clients, an international financial institution that depends on our expertise to drive operational excellence across Europe. As part of our mission to deliver excellence for a key client, we anticipate a...
-
SOC Analyst Level 2
il y a 7 heures
Bruxelles Schaarbeek, Belgique Proximus Temps pleinJoin Proximus Ada ! Within this Proximus’ newly created center of excellence for AI and Cybersecurity, the mission of the Security Management and CSIRT teams is to protect Proximus, its customers, its business, its operations and reputation against external and internal threats. You will be fascinated by a highly dynamic environment, the strong...
-
Security Operation Analyst
il y a 2 semaines
Bruxelles, Belgique Stott and May Temps pleinFirst-Line SOC Analyst (Freelance) Contract Type: Freelance / Independent Contractor Start: ASAP We are looking for a hands-on First-Line SOC Analyst to join our cybersecurity operations in Brussels. You will be working in a dynamic SOC environment where ~50–60% of your time will be dedicated to first-level alert monitoring, analysis, and...
-
Analyste Fonctionnel
il y a 2 semaines
Bruxelles, Belgique eXalt Temps pleinAnalyste Fonctionnel – Secteur Énergie Bruxelles | CDI eXalt recrute un(e) Analyste Fonctionnel(le) en CDI pour intervenir sur des missions à fort impact chez nos clients (TSO, DSO, fournisseurs, traders, producteurs). C'est l'occasion idéale de mettre votre sens de l'analyse au service de projets stratégiques qui façonnent l'énergie de demain. Votre...
-
Analyste Fonctionnel – Secteur Énergie
il y a 7 jours
Bruxelles, Belgique eXalt Temps pleinAnalyste Fonctionnel – Secteur Énergie Bruxelles | CDIeXalt recrute un(e) Analyste Fonctionnel(le) en CDI pour intervenir sur des missions à fort impact chez nos clients (TSO, DSO, fournisseurs, traders, producteurs).C'est l'occasion idéale de mettre votre sens de l'analyse au service de projets stratégiques qui façonnent l'énergie de demain. Votre...
