Apply here

L3 SOC Analyst / Detection Engineer

  • Brussels
  • Full-time
  • 7 days ago

Context

A major financial institution is strengthening its Security Operations Center to improve advanced incident response, proactive threat hunting, and detection engineering capabilities. The role supports the protection of critical national and European financial systems and infrastructure.

Responsibilities

  • Lead advanced cybersecurity incident investigations and response activities
  • Support L1 and L2 SOC analysts during escalations
  • Conduct forensic investigations and root cause analysis
  • Coordinate containment, eradication, and recovery actions
  • Perform proactive threat hunting activities
  • Analyze malware, phishing campaigns, and advanced attack techniques
  • Identify attacker TTPs aligned with MITRE ATT&CK
  • Design and maintain SIEM/EDR/XDR detection rules and use cases
  • Improve detection accuracy and reduce false positives
  • Translate threat intelligence into actionable detections
  • Validate detections through simulations and purple team exercises
  • Improve SOC processes, playbooks, and automation
  • Contribute to SOC reporting and operational maturity initiatives
  • Mentor junior SOC analysts and support knowledge sharing

Technical skills

Must have

  • Strong experience as an L3 SOC Analyst or Incident Responder
  • Advanced experience with Microsoft Sentinel
  • Advanced experience with Microsoft Defender XDR
  • Strong knowledge of Splunk
  • Experience in detection use case development and improvement
  • Advanced threat hunting capabilities
  • Malware analysis experience
  • Strong understanding of MITRE ATT&CK and attacker TTPs
  • KQL scripting experience
  • Experience handling high-severity cybersecurity incidents
  • Professional English proficiency
  • Native or bilingual proficiency in Dutch or French
  • Willingness to undergo a Federal Police security screening

Should have

  • Purple teaming experience
  • Experience with forensic investigations
  • Knowledge of vulnerability management
  • Experience mentoring junior analysts
  • Knowledge of SOC automation and playbook development
  • Experience working in regulated or financial environments
  • Good communication and collaboration skills
  • Autonomous and proactive mindset

Nice to have

  • Knowledge of Stamus
  • Experience with ServiceNow
  • Microsoft Azure knowledge
  • Linux Red Hat administration knowledge
  • Windows Server administration experience
  • iOS environment knowledge
  • Relevant cybersecurity certifications

Who we are

Community Consulting goes beyond traditional consulting; it’s all about fostering connections in an atmosphere of trust and confidence.

Transparency & Honesty : We say things as they are. Clear communication for seamless collaboration.

#COMMUNITEAM : Work independently, but never alone. Collective intelligence drives us further, faster.

Total Commitment : Always present, always engaged. We find solutions and make sure everyone moves forward together.

Guaranteed Efficiency : No fluff, just results. We act fast, keep our promises, and deliver top quality.

This is our DNA. This is how we make a difference.

Type

Permanent or Freelance

Contract

Full-time

Location

Brussels

Homeworking

2 days per week

Sector

Banking

Keywords

  • Threat Hunting
  • Detection Engineering
  • SIEM/XDR

You Career Advisor

Julie Huart
Julie Huart
Talent Management Officer
j.huart@communityconsulting.be

Are you interested in this job offer ?

Apply now

Back to all jobs