Who are we?
In today's digital world, organizations need to shift their approach to cyber security. Prevention alone is no longer sufficient. The ability to rapidly detect and respond to threats is essential. Organizations are increasingly turning to trusted strategic partners who can unburden them completely in the domain of detection and response.
That's where we come in. We offer MDR as a value service to a broad spectrum of customers across different verticals – all equally exciting.
Based in Belgium and the Netherlands, we help companies navigate the digital era and make data-driven decisions with confidence. We proudly serve clients in the top 200 across the Benelux, spanning a wide range of fascinating and diverse sectors.
At Davinsi Labs, we love to inspire each other, collaborate closely, and pursue excellence together. We are building a workplace where fulfillment and happiness take center stage.
Your mission: what can you expect from the job?
You will join our MSP teams focusing on Managed Detection & Response (MDR) services, with a specific role in our
Microsoft Sentinel-focused MDR team
. Your primary objective as an engineer will be to continuously enhance our Sentinel platform, detection frameworks, and threat hunting capabilities across complex customer environments – offering our customers
the comfort of knowing
.
Your expertise will help shape the next evolution of our MDR service across the Microsoft ecosystem.
You Will Contribute To The Following Technologies
* Microsoft Sentinel
* Microsoft Defender XDR
* Logic Apps / Automation
* Microsoft Data Lake
* Broader integrations with cloud, network, and third-party security tooling
Key Responsibilities
Research
* Investigate new methods to detect malicious behaviour in customer environments.
* Simulate attacker techniques and translate findings into actionable Sentinel detections, enrichment logic, and hunting queries.
Detection Frameworks & Content Development
* Create and continuously improve detection use cases, rules, and analytics for Sentinel and our broader MDR platform.
* Map detection content to best-practice frameworks such as MITRE ATT&CK.
* Build foundational frameworks for Threat Intelligence, Threat Hunting, Dashboarding, and Context Enrichment.
Detection Rule Lifecycle Management
* Develop, activate, tune, and maintain analytics rules within Microsoft Sentinel.
* Manage our full detection library in version control (Git).
* Produce coverage heat maps for customers to identify gaps and improve resilience.
Threat Hunting & Incident Detection
* Conduct proactive hunting missions using Sentinel and Microsoft XDR data sources.
* Validate detection capabilities in lab and live environments.
* Collaborate closely with Incident Response teams to define follow-up steps, investigation playbooks, and response recommendations.
Platform Lifecycle Management
* Ensure the reliability, scalability, and performance of our Sentinel MDR platform.
* Implement best practices and industry standards to safeguard the availability, integrity, and accuracy of customer data and detections.
Dashboarding & Reporting
* Create meaningful dashboards, workbooks, and insights that empower SOC operations and give customers clear visibility into their security posture.
Documentation
* Develop high-quality, repeatable documentation to ensure consistent processes across teams and customers.
Serving as a Subject Matter Expert
* Act as a trusted advisor for internal teams, customers, and vendors.
* Stay up-to-date with the Microsoft security ecosystem, new TTPs, and evolving trends within cloud, SIEM, and XDR technologies.
Hello, is it me you're looking for?
* You are passionate about IT security and technology, with several years of relevant professional experience.
* You have a strong background in computer science, computer engineering, or IT security (a degree is an asset).
* You have affinity with Microsoft Sentinel, SIEM technologies, or XDR platforms such as Microsoft Defender XDR.
* You have experience with security incident response, added bonus if you have familiarity with SOAR tools (Sentinel Logic Apps, Palo Alto XSOAR, etc.).
* You have experience with any of the following: Git, JIRA, GitHub, public cloud, ...
* You understand modern security controls (NGFW, EDR, XDR, cloud-native controls, etc.).
* You communicate smoothly in Dutch and English (written and oral). French is a plus.
* You are a strong communicator who enjoys working with customers and internal teams, acting as a trusted advisor for detection engineering and response.
* You are analytical, solution-oriented, and not afraid to challenge or be challenged.
What We Offer
You come to us for the job, but you stay for the people.
They are the backbone of our organization, and that's reflected in the rewards we offer:
* An attractive salary package: An absolute must to bring out the best in you.
* The opportunity to make a difference in a challenging, digital world: We give you the environment and tools to grow into the best version of your (professional) self.
* A challenging work environment and inspiring team: Your initiative is valued, and your uniqueness excites us.
* A great vibe in a cozy office in Berchem: We love food, drinks, and laughter. We work hard and play even harder. Enjoy pool, darts, or table tennis during your breaks.
* Regular team events and a culture built on collaboration, curiosity, and excellence.