The (Senior) SOC Analyst position involves working with a team of level 2 and level 3 analysts to protect our clients customers against the most advanced cyber attacks. The analyst will use the latest technologies to stay ahead of threat actors, investigate interesting incidents, and minimize false positives. The work includes monitoring events from SIEM, EDR, NDR, and other security tools, responding to incidents by escalating and reporting in understandable language, working with network engineers to stop attacks, and designing, implementing, and improving use cases and detection rules. The analyst will also write SOAR playbooks for automatic response, investigate third-party threat intelligence, conduct threat hunting, and model threats with MITRE ATT&CK.
The ideal candidate should have at least 5 years of experience as a security analyst. They should have demonstrable knowledge of web protocols, common attacks, and Linux/Unix tools, and experience with MITRE ATT&CK, SIEM, EDR, AWS, and/or NDR. The candidate should be able to work independently and in a team, be motivated and open-minded, and have excellent English language skills (Dutch not required). Experience with SOAR and relevant certifications such as CISSP, CEH, CompTIA Security, or GCIH are a plus.
Our client offers a dynamic work environment with flexibility, a flat organization with experts to rely on, and lots of room for development and knowledge sharing. This is one of the leading companies in the Netherlands to work for and the culture is honest, open en and empathetic.
