SOC Analyst

Vos missions We are seeking a motivated and skilled Security Operations Center (SOC) Analyst who will perform a combination of Level 1 (L1) and Level 2 (L2) responsibilities. The successful candidate will monitor, triage, analyze, and respond to security events, ensuring timely detection and resolution of threats across various environments. ResponsibilitiesL1 Analyst Expectations - Primary Responsibilities:Monitoring and Alert Handling:You will continuously monitor SIEM and other security tools for alerts.You will categorize and prioritize incidents based on severity and impact.Initial Triage:You will analyze alerts to determine if they are true positives, false positives, or benign events.You will gather basic information about suspicious activities, such as IP addresses and file hashes.Documentation and Escalation:You will document findings, actions taken, and outcomes in incident tracking systems.You will escalate complex or high-severity incidents to L2 analysts with sufficient context and details.Runbooks and SOP Adherence:You will follow established playbooks and standard operating procedures for incident triage.L2 Analyst Expectations - Primary Responsibilities:Advanced Analysis:You will investigate escalated incidents using threat intelligence, packet analysis, and log correlation.You will conduct deeper analysis of malware samples, phishing emails, or other threats.Threat Containment and Mitigation:You will recommend or implement containment measures, such as blocking IPs or isolating endpoints.You will collaborate with IT teams to mitigate risks and ensure systems are patched or reconfigured.Incident Coordination:You will act as a point of contact for escalations and coordinate with IT, forensics, or threat hunting teams.You will assist in root cause analysis and post-incident reviews.Mentoring and Training:You will guide L1 analysts on proper triage methods and encourage skill development. Profile RequirementsMandatory Skills and Qualifications:You have technical knowledge of network protocols, firewalls, and security concepts.You have experience with SIEM tools such as Microsoft Sentinel.You have hands-on knowledge of EDR solutions like Microsoft Defender.You have scripting skills in KQL, Python, PowerShell, or Bash.You have experience working with Windows Server, Linux, and Apple iOS environments.You have knowledge of cloud platforms such as Microsoft Azure.You have familiarity with network appliances like firewalls, application proxies, and internet filtering systems.You have proficiency in languages: French or/and Dutch, and English Nice-to-Have SkillsCentral Log management: SplunkYou have experience using threat intelligence tools such as VirusTotal.You have knowledge of vulnerability management solutions like Rapid7 or Microsoft Defender for Vulnerability Management.You have familiarity with network intrusion detection systems (NIDS) like Stamus.Soft SkillsYou have a pro-active mindset.You have a strong sense of responsibility.You have the ability to work autonomously.You have a conscientious and detail-oriented approach.You have a focus on delivering future-proof solutions.You have a collaborative attitude and enjoy working as part of a team.You have effective communication skills, both written and verbal. Votre profil You have at least 2-3y of professional experiences as Security Analyst You’re eager to learn, motivated and curiousLet’s have a chat Advantages Salary conform your experience & expertiseHospitalization insurance (partner/children incl.)Group insuranceDental insurance (partner/children included)20 days statutory paid vacationsRecovery days 38/40Representation feeInternet fee ofDaily fee of 5.50€ net /day provided.Subscription GSM unlimited calls for Belgium (ITS subscription)Training plan (e-learning - certification at ITS charge)Extra advantages:Being a rather small team in BE, we’re very close to each of our consultants and we differentiate ourselves trying to really take care of you and make you grow with us and within our different clients.Regular follow-upRegular teambuilding to meet-up and have fun (every 3 months more or less)Flexibility and trustBenefits of still being part to a bigger group (ITS Group) and having access to resources and of a larger team of ExpertsCo-optation system because sharing is caring Processus de recrutement 1st pre-screening on the phone to discuss about your search and conditions and our first potential opportunities matching.Package proposal so we all agree beforehand.You will be part of a dynamic security team where your skills and ideas are valued. You will have opportunities to grow your expertise, work on challenging incidents, and make a real impact by helping protect our digital environments. If you are passionate about cybersecurity, eager to take on both L1 and L2 responsibilities, and ready to contribute to a collaborative team, we want to hear from you.Apply today and take the next step in your cybersecurity careerApply now and take the next step in your careerSend us your CV