CSIRT Analyst (Incident Response Engineer)
Hraize
Hasselt, Belgium
9 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
Intermediate Compensation
€ 59KJob location
Hasselt, Belgium
Tech stack
Computer Security
Digital Forensics
Intrusion Detection and Prevention
Red Team (Cyber Security)
Security Information and Event Management
Cyber Threat Analysis
Cybercrime
Purple Team (Cyber Security)
SentinelOne Expertise
Blue Team (Cyber Security)
Job description
We are looking for an experienced CSIRT Analyst (Incident Response Engineer) to join our client's Security Operations Center (SOC) in Hasselt, Belgium.
As part of a mature Managed Detection and Response (MDR) environment, you will work alongside the Blue Team to investigate sophisticated cyber threats, respond to security incidents, perform digital forensics, and strengthen the organization's overall security posture.
This is an excellent opportunity for cybersecurity professionals who thrive in incident response, threat hunting, and enterprise security operations.
Key Responsibilities
- Investigate and resolve complex security alerts and Tier 2 incident escalations.
- Participate in incident response activities and cyber crisis management.
- Perform Digital Forensics and Incident Response (DFIR) investigations.
- Conduct proactive threat hunting based on attacker tactics, techniques, and procedures (TTPs).
- Perform compromise assessments and security impact analyses.
- Collect, analyze, and apply threat intelligence, including Indicators of Compromise (IOCs) and TTPs.
- Contribute to detection engineering across SIEM and Extended Detection and Response (XDR) platforms.
- Participate in Purple Team exercises alongside Red Team members.
- Develop, maintain, and optimize incident response playbooks and SOAR workflows.
- Improve DFIR processes, threat detection capabilities, and operational procedures.
- Participate in an on-call incident response rotation.
Requirements
- 3-5 years of experience in CSIRT, SOC, Incident Response, or Cybersecurity Operations.
- Strong expertise in:
- Incident Response
- Security Monitoring
- Threat Hunting
- Threat Intelligence
- Digital Forensics
- Hands-on experience with enterprise MDR technologies, including:
- Endpoint Detection and Response (EDR) solutions such as CrowdStrike, Microsoft Defender, or SentinelOne
- SIEM platforms
- XDR and Network Detection & Response (NDR) solutions
- Strong analytical and problem-solving skills.
- Proactive approach to identifying and mitigating cyber threats.
- Excellent communication and collaboration skills., If you have a passion for incident response, digital forensics, and threat hunting, we'd love to hear from you.