For one of our clients, we are looking for a Cybersecurity Incident Responder (Contractor / freelance).

The position is in Brussels , starting on October 8, 2024.

Duration : 9 months + extension possible.

English is requested

Nationality : EU nation citizen

Required clearance : EU secret. The process to get the clearance can be started at the beginning of the mission.

Activities:

• Collect intrusion artefacts and use discovered data to enable mitigation of potential cyber defence incidents
• Coordinate and perform incident response functions and forensic investigation
• Receive and analyze network alerts from various sources - Splunk, Qradar, FireEye EDR, IDS
• Defining and carrying out containment measures, eradication measures and recovery measures
• Provide technical assistance to all stakeholders
• Post-mortem identification of lessons learned and recommendations to improve security controls such as mitigating the risk of re-occurrence
• Improving documentation and procedures
• Interfacing with other experts
• Secure handling, analysis and exchange of cyber security information with relevant stakeholders and trusted partners
• Technology and security watch

Skills

Seniority: Bachelor Degree in Computer Science or Information Technology complemented by 3 years of professional practice in a specific Cyber Security domain, or Secondary Education complemented by 9 years of professional practice in a specific Cyber Security domain and supported by at least 2 relevant professional certifications

Experience of 3 years in :

• Collect intrusion artefacts and use discovered data to enable mitigation of potential cyber defence incidents
• Coordinate and perform incident response functions and forensic investigation
• Receive and analyse network alerts from various sources - Splunk, Qradar, FireEye EDR, IDS
• Defining and carrying out containment measures, eradication measures and recovery measures
• Post-mortem identification of lessons learned and recommendations to improve security controls such as mitigating the risk of re-occurrence
• Improving documentation and procedures

Are a plus

Certifications in cyber security,  such as CISSP (  Certified Information,  Systems Security Professional ) , GCIH or GIAC/ GCIM

Certification in IT Service Management.