Security Operations Centre Analyst

il y a 2 jours

Brussels, Belgique Vector Synergy Temps plein

**Location**:
Brussels, Belgium

**Security Clearance**:
EU Restricted

**Introduction**:
**Skills, knowledge, experience required**:

- At least 1 certification among the following:

- GPEN (GIAC Certified Penetration Tester);
- GCED (GIAC Certified Enterprise Defender);
- GPPA (GIAC Certified Perimeter Protection Analyst);
- GCFE (GIAC Certified Forensic Examiner);
- GCFA (GIAC Certified Forensic Analyst);
- GNFA (GIAC Certified Network Forensic Analyst);
- CFCE (IACIS Certified Forensic Computer Examiner);
- CCFP (Certified Cyber Forensics Professional);
- SCMO (SABSA Certified Security Operations and Service Management Specialist);
- Minimum 3 years’ experience in networking (TCP/IP, SNMP, DNS, Syslog-ng, etc.);
- Minimum 2 years’ experience in using, configuring and tuning a security information and event management (SIEM) tool;
- Knowledge on and minimum 2 years’ experience with the following network security solutions and technologies:

- Firewalls;
- Network intrusion detection systems (IDS) and intrusion prevention systems (IPS);
- Switches and routers;
- Advanced persistent threat (APT) detection solutions such as FireEye;
- DNS, DHCP, VPN;
- Network forensics (full packet capture);
- Traffic baselining analysis;
- Knowledge on and minimum 2 years’ experience with the following host-based security solutions:

- Host-based intrusion prevention systems (HIPS);
- Malware end-point protection;
- Operating system logs;
- Strong knowledge on and minimum 3 years’ experience in:

- MS Windows security events analysis;
- Security analysis of firewall, proxy, and IDS logs;
- Security analysis of applicable or middleware logs (Oracle HTTP Server, Apache HTTP Server, Oracle WebLogic Server);
- Minimum 1 year of experience in writing and optimizing:

- IDS signatures (preferably Snort and/or Suricata);
- YARA rules;
- Minimum 3 years’ experience with:

- SIEM tools such as:

- HP ArcSight Enterprise Security Manager (ESM) 6.x;
- IBM QRadar SIEM;
- At least one of the following log management solutions:

- HP ArcSight Logger;
- IBM QRadar Log Manager;
- Splunk;
- Minimum 2 years’ experience with:

- Snort or Cisco Sourcefire Next-Generation IPS (NGIPS);
- Cisco FireSIGHT;
- Check Point and Juniper firewalls;
- Blue Coat proxies.

**Desirable**:

- Minimum 2 years’ experience with STIX (Structured Threat Information Expression) with a particular focus on the following related standards:

- CybOX (cyber observables);
- CAPEC (attack patterns);
- MAEC (malware);
- TAXII (threat information exchange);
- Minimum 1 year of experience with:

- Suricata or Stamus Networks;
- ELK stack (Elasticsearch, Logstash and Kibana);
- FireEye (EX, NX, AX, FX, HX, IX).

**Duties/role**:

- Providing real-time monitoring of cyber defence and intrusion detection systems;
- Performing automatic-based processing (centralisation, filtering, and correlation) of security events;
- Conducting human-based analysis of automatically correlated events;
- Processing incoming warnings, alerts, and reports;
- Performing triage based on verification, level of exposure and impact assessment;
- Categorizing events, incidents, and vulnerabilities based on relevance, exposure, and impact;
- Opening tickets and ensuring case management;
- Activating initial response plan based on standard playbook entries;
- Maintaining incident response address book;
- Advising affected users on appropriate course of action;
- Monitoring open tickets for incidents and vulnerabilities from start to resolution;
- Escalating unresolved problems to higher levels of support, including the Incident Response and Vulnerability Mitigation teams;
- Configuring the SIEM components for an optimal performance;
- Improving correlation rules to ensure that the monitoring policy allows an efficient detection of potential incidents;
- Analysing risks and security policy requirements, and translating them into technical events targeting the system components;
- Identifying the required logs, files or artefacts to collect from the monitored system and, if necessary, possible complementary devices to deploy;
- Elaborating the relevant detection and correlation rules, and implementing them in the SIEM infrastructure;
- Configuring and tuning cyber-defense solutions;
- Reviewing and improving the monitoring policy on a regular basis;
- Integrating cyber-defence solutions for efficient detection;
- Defining dashboards and reports for reporting on KPIs;
- Producing qualified reports (including recommendations) or alerts to SOC customers and following up on actions;
- Contributing to the design of the overall monitoring architecture, in close relationship with the customers and system owners on one hand, and the Security Operations Engineering team on the other hand, by performing the following tasks:

- Assessing security events detection solutions and developing new solutions;
- Integrating the solutions within the security monitoring scheme (log collection architecture, in

  • Security Operations Analyst

    Il y a 2 mois

    Brussels, Belgique Luminus Temps plein

    In today's landscape of escalating digital complexity and cybersecurity threats, a Security Operations Analyst plays a crucial role in safeguarding Luminus assets.The Security Operations Analyst is responsible for cyber incident response and the operations, monitoring and administration of a variety of cybersecurity solutions and processes to protect Luminus...

  • Security Operations Analyst

    Il y a 5 mois

    Brussels, Belgique Luminus Temps plein

    Publicatiedatum: 22 augustus 2024 - Brussels - Contract open-end In today's landscape of escalating digital complexity and cybersecurity threats, a Security Operations Analyst plays a crucial role in safeguarding Luminus assets. The Security Operations Analyst is responsible for cyber incident response and the operations, monitoring and administration of a...

  • Security Analyst

    il y a 6 jours

    Brussels, Belgique Proximus Group Temps plein

    Description de fonction Departement Vous travaillez au sein de l'organisation des services ICT et plus particulièrement au sein du CI & CSC (Customer ICT & Cyber Security Center), dont fait partie le Customer SOC (Security Operations Center). Votre mission Vous êtes responsable de l'analyse sécurité des réseaux ICT des clients européens depuis...

  • Security Analyst

    il y a 5 jours

    Brussels, Belgique Vector Synergy Temps plein

    **Location**: Brussels, Belgium **Security Clearance**: EU Confidential **Introduction**: One of our clients is currently looking for a skilled Security Analyst to provide IT security services for the projects. **Skills, knowledge, experience required**: - Practical experience proving the capability to execute the tasks described below; - Proven...

  • Digitribe - IT Security Analyst

    il y a 3 jours

    Brussels, Belgique DigiTribe Temps plein

    Your mission The IT Security Analyst is responsible for analysing security incidents, improving overall security visibility and monitor, hunt and detect for security anomalies throughout the organization's networks and systems. You will guarantee the follow-up of security incidents and analyse them in close collaboration with the local service desk and...

  • Security Analyst

    Il y a 7 mois

    Brussels, Belgique Vector Synergy Temps plein

    **Location**: Brussels, Belgium **Introduction**: One of our clients is currently looking for a Security Analyst in information system security. The client’s infrastructure is supported by Corporate ITIC services. However, some local specific needs requires to design, setup, and administer an ad-hoc solution at client level. The main focus of the...

  • Security Analyst

    Il y a 7 mois

    Brussels, Belgique Vector Synergy Temps plein

    **Location**: Brussels, Belgium **Security Clearance**: EU Confidential **Introduction**: The Security Analyst aims at identifying areas where information system changes are needed to support business plans and to monitor the impact in terms of change management. This service contributes to the general functional requirements of the business organization...

  • Cyber Security Analyst

    il y a 1 semaine

    Brussels, Belgique WDS Global Limited Temps plein

    **Job Title: Cyber Security Analyst** **Job Type: Contract** **Job Location: Luxembourg and or Brussels some onsite** **Contract Rate: Euro 550 per day** **Contract Length: 12 Months with Multiple extensions** Our Client, one of the world s foremost IT Consultancies, is looking to recruit a Contract Cyber Security Analyst to join their client in...

  • Cyber Security Analyst

    il y a 2 semaines

    Brussels, Belgique Proximus Group Temps plein

    Are you passionate about #AI or #cybersecurity? You love working with high profile teams with a sure taste for challenge and variety? You dream to join a fast-growing company with start-up mentality? Eager to learn continuously? Join Proximus Ada ! Within this Proximus’ newly created centre of excellence for AI and Cybersecurity, the mission of the...

  • Security Analyst Customer Cyber Security Center

    il y a 3 jours

    Brussels, Belgique Proximus Group Temps plein

    Travailler chez Proximus, c’est suivre une devise bien claire : Think Possible. Nous partons toujours du principe qu’une chose est possible, même si elle semble impossible. Plus qu’une devise, c’est un état d’esprit qui ouvre tout un monde de solutions numériques. Des solutions pour une vie plus simple. Et un mode de travail plus...

  • Secure Operations Centre Analyst

    Il y a 7 mois

    Brussels, Belgique CERT-EU Temps plein

    Contract Agent Function Group IV - A A A A- DFIR**What we propose**: Our Secure Operations Centre (SOC) Team has the responsibility for monitoring available information sources for indications of compromise of the EU institutions, bodies and agencies - our constituents. Analysts in the team triage the incoming information, and, if necessary, investigate...

  • Security Analyst

    il y a 6 jours

    Brussels, Belgique NRB Temps plein

    For our customer based in **Brussels**, an **European Institution,** we are looking for a Security Analyst. As Security Analyst, you will perform the following tasks: - Support project teams in improving the security posture of systems they develop; - Analyse SAST and DAST findings (initial triage with the team), performing code review of implemented...

  • Security Analyst

    Il y a 7 mois

    Brussels, Belgique DigiTribe Temps plein

    As a member of the security services team, you will ensure that the clients information systems satisfy the security requirements necessary to protect the organization's core missions and business processes and enhance security awareness throughout the IT organization. **Tasks**: Help setup Threat Hunt roadmap Validate existing use cases to make sure they...

  • IT Security Analyst

    il y a 2 semaines

    Brussels, Belgique Bandwidth Temps plein

    **Who We Are**: At Bandwidth, your music matters when you are part of the BAND. We celebrate differences and encourage BANDmates to be their authentic selves. #jointheband **What We Are Looking For**: The Information Security Engineer will provide daily support for the information security systems, tools and services for the local security operations of the...

  • Security Analyst

    il y a 4 jours

    Brussels, Belgique Next Ventures Limited Temps plein

    Type **Contract** My client In the governmental sector is currently looking for a Security Analyst for response and alert team, to join us on a 1-year extendable contract this role will be a 20-hour-a-week contract onsite in Brussels. **Tasks** Assistance to the security expert in responding to alerts detected by the SOC team. **Technical skills** -...

  • Cyber Security Analyst

    il y a 3 jours

    Brussels, Belgique AT Recruitment Temps plein

    **Job omschrijving** Onze klant is een wereldwijde speler actief in de aviation sector. Meer specifiek ontwikkelen zij softwareoplossingen voor o.a. luchtverkeersleiding, gates, grondverlichting op vliegveldenDe onderneming is actief in 55 landen over de ganse wereld, waaronder België één van de grootste vestigingen is. Je komt terecht in de vestiging...

  • Cyber Security Analyst

    Il y a 7 mois

    Brussels, Belgique Robert Half Belgium Temps plein

    Robert Half recherche un profil **Cyber Security Analyst (H/F/X)** pour un de ces clients situés à Liège. Robert Half recherche un profil **Cyber Security Analyst (H/F/X)** pour un de ces clients situés à Liège. Acteur phare de l'innovation en Fintech depuis plus de 15 ans notre client met ses logiciels au service des institutions financières en...

  • SOC Analyst

    il y a 2 semaines

    Brussels, Belgique WDS Global Limited Temps plein

    **Job Title: SOC Analyst** **Job Type: Contract** **Job Location: Brussels** **Contract Rate: Euro 530 per day** **Contract Length: 12 Months with Multiple extensions** Our Client, one of the world's foremost IT Consultancies, is looking to recruit a Contract SOC Analyst to join their client in Brussels Onsite. **Client requires EU Nationals.** The...

  • SOC Analyst

    il y a 2 semaines

    Brussels, Belgique WDS Global Limited Temps plein

    **Job Title: SOC Analyst** **Job Type: Contract** **Job Location: Brussels** **Contract Rate: Euro 530 per day** **Contract Length: 12 Months with Multiple extensions** Our Client, one of the world s foremost IT Consultancies, is looking to recruit a Contract SOC Analyst to join their client in Brussels Onsite. **Client requires EU Nationals.** The...

  • Functional Analyst Ict Security

    il y a 2 semaines

    Brussels, Belgique Pauwels Consulting Temps plein

    **Job description**: We are currently looking for a new member to strengthen our team of IT analysts in the beating heart of Brussels. Are you that one-of-a-kind functional analyst who knows a thing or two about ICT security, and who doesn't shy away from an exciting new challenge? Then do read on! Because at Pauwels Consulting, we don’t just mix and...