CSIRT Analyst (Incident Response Engineer)
About the Role
We are looking for an experienced CSIRT Analyst (Incident Response Engineer) to join our client's Security Operations Center (SOC) in Hasselt, Belgium.
As part of a mature Managed Detection and Response (MDR) environment, you will work alongside the Blue Team to investigate sophisticated cyber threats, respond to security incidents, perform digital forensics, and strengthen the organization's overall security posture.
This is an excellent opportunity for cybersecurity professionals who thrive in incident response, threat hunting, and enterprise security operations.
Key Responsibilities
- Investigate and resolve complex security alerts and Tier 2 incident escalations.
- Participate in incident response activities and cyber crisis management.
- Perform Digital Forensics and Incident Response (DFIR) investigations.
- Conduct proactive threat hunting based on attacker tactics, techniques, and procedures (TTPs).
- Perform compromise assessments and security impact analyses.
- Collect, analyze, and apply threat intelligence, including Indicators of Compromise (IOCs) and TTPs.
- Contribute to detection engineering across SIEM and Extended Detection and Response (XDR) platforms.
- Participate in Purple Team exercises alongside Red Team members.
- Develop, maintain, and optimize incident response playbooks and SOAR workflows.
- Improve DFIR processes, threat detection capabilities, and operational procedures.
- Participate in an on\-call incident response rotation.
- 3–5 years of experience in CSIRT, SOC, Incident Response, or Cybersecurity Operations.
- Strong expertise in:
- Incident Response
- Security Monitoring
- Threat Hunting
- Threat Intelligence
- Digital Forensics
- Hands\-on experience with enterprise MDR technologies, including:
- Endpoint Detection and Response (EDR) solutions such as CrowdStrike, Microsoft Defender, or SentinelOne
- SIEM platforms
- XDR and Network Detection \& Response (NDR) solutions
- Strong analytical and problem\-solving skills.
- Proactive approach to identifying and mitigating cyber threats.
- Excellent communication and collaboration skills.
- Opportunity to work within a mature enterprise Security Operations Center.
- Exposure to advanced cybersecurity technologies and complex security incidents.
- Collaborative environment working alongside experienced Blue Team and Red Team professionals.
- Hybrid working model with flexibility..
If you have a passion for incident response, digital forensics, and threat hunting, we'd love to hear from you.
Submit your updated CV before 15 July 2026\.
Pay: From €4\.500,00 per month
Work Location: Hybrid remote in Hasselt
Cette annonce provient de indeed. Voir l'annonce originale ↗