L3 Analyst & Detection Engineer

Our client is looking for a Senior L3 SOC Analyst / Detection Engineer to strengthen its Security Operations Center in a highly critical and regulated environment.

The consultant will lead advanced cybersecurity incident investigations, support L1 and L2 analysts during escalations, and continuously improve detection and response capabilities. This role combines expert-level incident response, threat hunting, and detection engineering.

Due to the sensitive nature of the environment, the selected consultant must agree to undergo a security screening process, which may take up to 30 days

The consultant will be responsible for: Leading complex and high-severity cybersecurity incident investigations. Supporting L1 and L2 SOC analysts during escalations. Performing forensic investigations and root cause analysis. Coordinating containment, eradication, and recovery actions with IT and security teams. Conducting proactive threat hunting using threat intelligence and behavioral analysis. Identifying attacker TTPs based on frameworks such as MITRE ATT&CK. Analyzing malware, phishing campaigns, suspicious behaviors, and advanced attack patterns. Designing, developing, testing, and maintaining SIEM / EDR / XDR detection use cases. Improving existing detections to reduce false positives and increase detection accuracy. Translating threat intelligence into actionable detection content. Validating detection effectiveness through simulations, purple team exercises, and adversary emulation. Improving SOC playbooks, procedures, automation, reporting, and operational maturity. Mentoring junior analysts and supporting knowledge sharing within the SOC team.

Do you have experience in iOS?, Senior experience as an IT Security Analyst / L3 SOC Analyst / Incident Responder. Strong experience in advanced incident response. Experience in detection use case development and improvement. Strong knowledge of Microsoft Sentinel. Strong knowledge of Microsoft Defender XDR. Strong knowledge of Splunk. Advanced scripting skills, especially KQL. Experience in threat hunting. Knowledge of security frameworks and methodologies such as MITRE ATT&CK and Cyber Kill Chain. Ability to reduce false positives and improve detection accuracy. Strong communication skills. Autonomous, collaborative, responsible, and proactive mindset. Ability to mentor L1/L2 analysts.

Additional skills

Malware analysis. Purple teaming. Vulnerability management. Stamus. ServiceNow. Microsoft Azure. Linux Red Hat. Windows Server 2016+. iOS. Relevant IT security certifications are a strong plus.

Languages

Dutch or French: native or bilingual proficiency. English: professional working proficiency.

Pulled from the full job description

• Fuel card
• Company car
• Hospitalization insurance
• Company events, You have at least 5 of professional experiences in IT If you are at least fluent in FR/ENG or NL/ENG it's best You're eager to learn, motivated and curious Let's have a chat ! Advantages Hospitalization insurance (partner/children incl.) Group insurance Dental insurance (partner/children included) 20 days statutory paid vacations (legal vacations cumulated for 1 year of work) 11 days recovery time work 38/40 per year (= annual average: 1 day per 20 days worked) if the client asks you to work 8h/day Representation fee net per month. Internet fee of € 40 per month. Company car with national fuel card OR Public transport reimbursed OR mobility package. Daily fee of 5.50€ net /day provided. Subscription GSM unlimited calls for Belgium (ITS subscription) Training plan (e-learning - certification at ITS charge)

Extra advantages: Being a rather small team in BE (6 in back-office), we're very close to each of our consultants and we differentiate ourselves trying to really take care of you and make you grow with us and within our different clients. Regular follow-up (every 3 to 6months depending on your needs/will) Regular teambuilding to meet-up and have fun (every 3 months more or less) Flexibility and trust Benefits of still being part to a bigger group (ITS Group) and having access to resources and of a larger team of Experts Co-optation system because sharing is caring! Processus de recrutement 1st pre-screening on the phone to discuss about your search and conditions and our first potential opportunities matching. Job descriptions sent and Teams meeting fixed with us (HR and Sales) to dig into your experience and the role. Package proposal so we all agree beforehand. Your CV is sent to the different clients you've agreed to, to find the best mission for you!

En ligne depuis le 07.05.2026

Bruxelles

For more than 25 years, ITS Group has been a French ESN specializing in digital transformation, employing around 1,400 employees across 8 agencies in France and 1 in Belgium. Our expertise: IT infrastructure & operations, cloud & managed services, mobility, workstations & networks, strategy, consulting & AMO, cybersecurity, development of business applications. ITS Group places its CSR commitment at the heart of its concerns by developing sustainable and responsible digital technology and by promoting the professional and personal development of its employees. Find out more: www.itsgroup.com   You must create an Indeed account before continuing to the company website to apply