Cybersecurity Infrastructure Engineer
Brussels, Brussels, Belgium
Applications have closed
Uni Systems
Organize and operate the Security infrastructure components (mainly Splunk SIEM and FirePower IDS):
- Deploy and manage the various technologies and components used specifically for Security needs;
- Regularly review and improve the Splunk SIEM detection routine configurations;
- Ensure that the Security events are properly monitored and that expected log sources are available;
- Manage changes in a structured and controlled way;
- Regularly review and upgrade the SIEM configurations with regard to network, servers and applications evolutions
- Under the supervision of the Leader of the Monitoring team, contribute to the proper management of the SIEM infrastructure
Draft documentation:
- Detection routines descriptions;
- Processes and procedures regarding events analysis and incidents handling.
Interact on a daily basis with the management and other ICT operations teams (network, datacentre, applications and others):
- daily review alerts, notable events, incidents, ...
- follow-up of detected suspicious activities with ICT operations teams and system/application owners
- escalate potential incidents to the CISO team
- be available for managing unplanned events and work under pressure, occasionally outside the normal working hours in case of severe security incidents;
- report relevant events to the management.
Requirements
- Bachelor's level degree in ICT field
- At least 6 years of professional experience in the following specific ones:
- Log management and SIEM solutions, especially Splunk;
- Identity and Access management;
- Endpoint security systems including: antivirus software, host intrusion detection and prevention, data encryption, hardening practices, data protection;
- Network concepts and the associated security solutions. In particular: Internet/Intranet/Extranet, authentication systems, Firewall, Proxies, Network IDS/IPS, e-mail gateways, IP security, Remote access control
- Windows Security:
- Windows 10 workstation hardening;
- Windows server hardening;
- Windows Active Directory management and Security;
- Logs collection, filtering, aggregation and processing;
- Linux Security:
- Linux Security management and hardening;
- Linux workstations and servers monitoring (logs gathering and processing);
- Cloud environment:
- Microsoft cloud environments and security tools (Sentinel, AZAD, Defender, ...);
- AWS cloud environments and security tools (GuardDuty, Security hub, ...)
- Fluency in English, French language knowledge is an advantage.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Antivirus AWS CISO Cloud Encryption Endpoint security Firewalls IAM IDS Intrusion detection IPS Linux Monitoring SIEM Splunk Windows
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs