CSIRT Analyst

Do you want to be a part of one of the fastest-growing and largest security operations centers in Europe? Do you have a passion for Cyber Security, especially advanced Managed Detection & Response (MDR)? Does incident response, digital forensics, threat hunting, threat intelligence and everything related to Cyber Security feel like second nature to you? Are you a Cyber Defender at heart, driven to strengthen the blue team and help organizations under attack? If you answered yes to all of these questions, then you might be the perfect fit for our CSIRT Analyst role!

• You handle security alerts/incidents that have been escalated by the SOC Analysts (Tier 2)
• You will handle security alerts and incidents together with your team
• You do DFIR assignments, including DFIR readiness assessments
• You participate in the weekly Threat Hunting duty to proactively chase threats through novel Tools, Techniques & Procedures (TTPs)
• You will perform compromise assessments to identify potential compromises and their scope
• You collect Threat Intelligence (IOCs and TTPs)
• You will contribute to the Detection Engineering in SIEM, xDR, …
• Together with the Red Team you will do Purple Teaming exercises to test and improve the defense
• You contribute to the creation of a scenario in SOAR
• You will co-write processes and procedures related to DFIR, Threat Intell, Threat Hunting, …
• You will be part of our incident response on call service.

• You have at least 3-5 years of experience in a similar position
• You have a bachelor or master degree or equivalent through experience
• You have a hands-on and proactive mindset with a 'can do' mentality
• You have experience and/or interest in working with the following MDR tools: EDR (CrowdStrike Falcon, MS Defender for Endpoint, Sentinel One, ...), NDR (Vectra, Darktrace, ...), xDR (CrowdStrike Identity Protection, MS Defender for Office/Clouds Apps/Identity/...)
• As an analyst or engineer, you already have a good knowledge of Security Monitoring with SIEM technologies
• You are passionate about the following security capabilities: Security Monitoring, Digital Forensics, Incident Response, Threat Intelligence, Threat Hunting, ...
• You speak fluently Dutch and English.