About the Job
Our client is looking for a Senior L3 SOC Analyst / Detection Engineer to strengthen its Security Operations Center in a highly critical and regulated environment. The consultant will lead advanced cybersecurity incident investigations, support L1 and L2 analysts during escalations, and continuously improve detection and response capabilities. This role combines expert‑level incident response, threat hunting, and detection engineering.
Responsibilities
* Leading complex and high‑severity cybersecurity incident investigations.
* Supporting L1 and L2 SOC analysts during escalations.
* Performing forensic investigations and root‑cause analysis.
* Coordinating containment, eradication, and recovery actions with IT and security teams.
* Conducting proactive threat hunting using threat intelligence and behavioral analysis.
* Identifying attacker TTPs based on frameworks such as MITRE ATT&CK.
* Analyzing malware, phishing campaigns, suspicious behaviors, and advanced attack patterns.
* Designing, developing, testing, and maintaining SIEM / EDR / XDR detection use cases.
* Improving existing detections to reduce false positives and increase detection accuracy.
* Translating threat intelligence into actionable detection content.
* Validating detection effectiveness through simulations, purple team exercises, and adversary emulation.
* Improving SOC playbooks, procedures, automation, reporting, and operational maturity.
* Mentoring junior analysts and supporting knowledge sharing within the SOC team.
Required Skills
* Senior experience as an IT Security Analyst / L3 SOC Analyst / Incident Responder.
* Strong experience in advanced incident response.
* Experience in detection use‑case development and improvement.
* Strong knowledge of Microsoft Sentinel and Microsoft Defender XDR.
* Strong knowledge of Splunk.
* Advanced scripting skills, especially KQL.
* Experience in threat hunting.
* Knowledge of security frameworks and methodologies such as MITRE ATT&CK and Cyber Kill Chain.
* Ability to reduce false positives and improve detection accuracy.
* Strong communication skills.
* Autonomous, collaborative, responsible, and proactive mindset.
* Ability to mentor L1/L2 analysts.
Additional Skills
* Malware analysis.
* Purple teaming.
* Vulnerability management.
* Stamus.
* ServiceNow.
* Microsoft Azure.
* Linux Red Hat.
* Windows Server 2016+.
* iOS.
* Relevant IT security certifications are a strong plus.
Languages
* Dutch or French: native or bilingual proficiency.
* English: professional working proficiency.
About You
* At least 5 years of professional experience in IT.
* Fluency in FR/ENG or NL/ENG is preferred.
* Eager to learn, motivated, and curious.
Benefits
* Hospitalisation insurance (partner/children included).
* Group insurance.
* Dental insurance (partner/children included).
* 20 days statutory paid vacations (legal vacations cumulated for 1 year of work).
* 11 days recovery time work 38/40 per year (average: 1 day per 20 days worked) if the client asks you to work 8h/day.
* Representation fee net per month.
* Internet fee of €40 per month.
* Company car with national fuel card OR public transport reimbursed OR mobility package.
* Daily fee of €5.50 net/day provided.
* Subscription GSM unlimited calls for Belgium (ITS subscription).
* Training plan (e‑learning – certification at ITS charge).
Salary
Salary conforms to experience.
#J-18808-Ljbffr