SecOps Security Operations Engineer

utrecht, Netherlands
Type
Contract

Overview:
We are seeking a highly skilled Security Operations Engineer with a strong focus on the Microsoft Security Suite (Defender, Sentinel, and other Microsoft security products). This role involves close collaboration with the development team to configure, manage, and optimize Microsoft Sentinel and other security products, while continuously improving security operations practices. The ideal candidate should have a solid understanding of incident response and threat hunting, enabling them to quickly detect, analyze, and mitigate security incidents.

Key Responsibilities:
Configuration and Optimization: Work directly with the development team to configure and fine-tune Microsoft Sentinel and Defender solutions, ensuring seamless integration across the organization’s environment.

Use Case Development and Customization: Edit, create, and optimize use cases within Sentinel to detect a wide range of security threats. Customize and adapt out-of-the-box Sentinel queries and detections to align with the organization's specific security needs.

Security Operations: Monitor, analyze, and respond to security alerts within the Microsoft security ecosystem, ensuring incidents are efficiently investigated, escalated, and remediated.

Incident Response: Take a hands-on role in responding to and managing security incidents, including conducting thorough investigations, triaging alerts, and executing containment and remediation strategies.

Threat Hunting: Proactively identify potential security threats and vulnerabilities through continuous monitoring, threat intelligence, and advanced analytics. Develop and refine hunting queries to enhance detection capabilities.

Upgrades and Patching: Regularly update and upgrade the Microsoft security products, ensuring the environment is patched, secure, and running the latest versions of relevant security features.

Collaboration with Development Team: Partner closely with the development team to ensure security solutions align with system requirements, providing expertise in security best practices.

Documentation & Reporting: Maintain detailed documentation of security configurations, incident responses, and threat-hunting activities. Produce actionable reports for stakeholders regarding security posture and incident management.

Key Requirements:
Experience: Minimum of 3 years of experience in Security Operations or Security Engineering, with a focus on Microsoft Defender and Sentinel.
Incident Response Knowledge: Strong understanding of incident response principles and processes, with hands-on experience in responding to security breaches, including containment, eradication, and recovery.

Threat Hunting Expertise: Solid experience in threat hunting within an enterprise environment, including creating custom queries and leveraging threat intelligence to proactively find security issues.

Technical Skills:
Proficient in Microsoft Defender for Endpoint, Defender for Identity, and Microsoft Sentinel.
Experience with Azure Security Center, Azure Sentinel, and Security Information and Event Management (SIEM) platforms.
Familiarity with scripting (e.g., PowerShell, Python) for automation and workflow improvements.
Hybrid Working: Must be based in or around Utrecht, with the ability to work in a hybrid setup (partly remote, partly onsite).
Strong Communication Skills: Ability to communicate technical concepts effectively to both technical and non-technical teams.

Preferred Qualifications:
Certifications: Relevant certifications such as Microsoft Certified: Security Operations Analyst Associate, Certified Incident Handler (GCIH), or Certified Ethical Hacker (CEH) are a plus.

SIEM Experience: Experience in SIEM and familiarity with threat detection frameworks and attack methodologies (e.g., MITRE ATT&CK) is highly desirable.

Collaboration Tools: Experience with collaboration and project management tools, such as Jira or Confluence, is beneficial.a

• share

Related jobs

PKI EXPERT

Practice
Cloud & Infrastructure
Location
lyon - - France
Type
Contract
A PKI (Public Key Infrastructure) Engineer is responsible for designing, implementing, and maintaining secure PKI systems. Here’s a simplified job d...

Explore this job

SOC Engineer - Detection Rules Developer (Azure sentinel)

Practice
Cloud & Infrastructure
Location
Paris - - France
Type
Contract
Position: SOC Engineer - Detection Rules Developer (Azure sentinel) Location: Paris Remote working: 2 days per week on site About Us My client is seek...

Explore this job

Endpoint Security Engineer

Practice
Cloud & Infrastructure
Location
NANTERRE, Paris 92000 - France
Type
Contract
European candidates ONLYJob Description: We are seeking a highly skilled Endpoint Security Specialist to join our team. The ideal candidate will hav...

Explore this job

Security Engineer

Practice
Cloud & Infrastructure
Location
Den Hague - - Netherlands
Type
Contract
Summary Description: Interim Security Engineer to support connectivity, security services, and audit projects within the Technology/Network IP Operati...

Explore this job

Vulnerability Manager

Practice
Cloud & Infrastructure
Location
Paris 8401 - France
Type
Contract
job Title: Qualys Consultant Duration: Minimum 6 month (6-month renewable) Location: Paris Start Date: ASAPJob Summary: The Qualys Vulnerability Ma...

Explore this job

SOC LEAD

Practice
Cloud & Infrastructure
Location
paris - - France
Type
Contract
Job Title: SOC Team Lead (Splunk SIEM) Location: Paris Mission Length: 1 year initial contract Job Overview: We are seeking an experienced and driven ...

meer...

Opslaan en terug Naar vacature

Meer vacatures van Next Ventures

Cyber Security Manager

Do you want to work with cutting-edge technology in a dynamic environment where innovation and security go hand in hand? Can you ensure an ever-evolving platform remains secure and compliant? If so, this Cyber Security
3 dagen geleden- Volledige vacature bekijken

OT Cyber Security Specialist

OT Cyber Security Specialist Do you want to work with cutting-edge technology in a dynamic environment where innovation and security go hand in hand? Do you want to share your ideas, experiment freely, and play a crucial
1 dag geleden- Volledige vacature bekijken

Business Development Manager - SASE & SecOps

Business Development Manager SASE/SECOPSLocation: Netherlands The Business Development Manager SASE/SecOps is responsible for establishing relationships with large and medium sized businesses (customers/partners) on behalf
1 dag geleden- Volledige vacature bekijken

Security operations engineer

Intergamma is de organisatie achter de doe-het-zelf-formules GAMMA en KARWEI. Met bijna 400 bouwmarkten in Nederland en België is Intergamma al jaren de onbetwiste nummer één op de doe-het-zelfmarkt. De functie:Als
1 dag geleden- Volledige vacature bekijken