Senior CSIRT Security Engineer

Key Responsibilities 

• Incident Handling & Response: Manage and respond to cybersecurity incidents. 

• Investigations & Forensics: Conduct investigations, including digital forensics. 

• Data Leak Protection: Implement and monitor data leak protection measures. 

• Phishing Identification: Detect and respond to phishing attempts. 

• Threat Hunting: Conduct threat hunting campaigns to proactively identify risks. 

• Cyber Threat Intelligence: Produce and analyse cyber threat intelligence. 

• Vulnerability Management: Identify, assess, and manage vulnerabilities. 

Core Competencies & Education 

• Preferably MSc in Information Security. 

• Fluent in English (written & verbal); French is a plus. 

• Autonomy and ability to deliver within set timeframes. 

• Strong organisational and analytical skills. 

• Good interpersonal and communication skills; effective team player. 

• Ability to function effectively in a matrix structure. 

• Certifications such as GREM, Blue Team Level 1 (BTL1), Blue Team Level 2 (BTL2), Certified Red Team Expert (CRTE), or Certified Red Team Professional (CRTP) are a plus. 

Experience & Technical Skills 

• Proven record as an incident handler or cyber threat intelligence (CTI) analyst. 

• Proven experience in digital forensics. 

• Experience using ServiceNow. 

• Experience with EDR (e.g., Tanium), Antivirus (e.g., Trellix), SIEM (e.g., Elastic Search), and security tools (Netcraft, Virustotal, Symantec DLP, Ghidra). 

• Detailed technical knowledge of attacker tactics, techniques, and procedures. 

• Interest in all aspects of security research and development. 

  Engagement & Methodology 

• Engagement type: Time & Material (T&M). 

• Delivery methodology: Agile with bi-weekly sprints. 

• Governance: Quarterly planning, daily meetings, sprint planning, demos, and retrospectives.