Cyber Security Specialist

Location : Brussel, VLGContract Duration : 6 MonthsWork Mode : OnsiteOverview :1. Act as a first-line SOC analyst (approximately 60% of the time), working in a fast-paced anddynamic team environment where everyone, including management, contributes to L1analysis.2. Collaborate with the team to develop and implement use cases and/or engineer new solutionsand/or generate reports and/or perform other tasks as agreed upon with the consultant(approximately 40% of the time).3. Utilize our client SOC stack, which includes Splunk, TheHive, and Tines as an automationplatform.4. Stay up-to-date with emerging threats and technologies, applying this knowledge to improveour SOC operations and incident response capabilities. SPECIFIC KNOWLEDGE, SKILLS AND EXPERTISE:The following specific knowledge, skills and expertise are required for the performance of the above listed tasks.Experience with SIEM platform like Splunk for anomaly detection and threat huntingExperience with Incident Response Platform like TheHive for case management and collaborationExperience with SOC automation (eg. Tines automation)CT: experience with tools like MISP or OpenCTIEDR/XDR: Experience with EDR platform (eg. Bitdefender Gravity for endpoint security)Incident response: experience in incident response and digital forensic and especially in the field of windows forensic. Experience with scripting and programming languages (e.g., PowerShell, Python, Ruby, Bash) to automate tasks and develop custom testing scripts is needed.Experience: At least 6 years of experience in a SOC.Due to the particular nature of a large international organization such as EEAS, and due to the nature of activities in the cybersecurity domain, candidates should also have the following non-technical skills:Ability to integrate in an international/multicultural environment, rapid self-starting capability and experience in working in team;Ability to participate in multilingual meetings;Ability to work in multi-cultural environment, on multiple large projects;Ability to work in an extremely agile team environment, with a willingness to adapt to changing priorities and tasks.Ability to establish trusting relationships with counterparts in partnering organizations;Excellent team playerHigh degree of discretion and integrity.Certifications: Certification(s) in digital forensics and incident response is an advantage (p.e. GCFA and/or GCFE and/or ECIH and/or OffSec IR-200). At least one relevant certification in the field.