Azure Cloud Security Engineer
Bent u als Cloud Security Engineer geïnteresseerd om aan de slag te gaan bij de Belgische Nationale Strijdkrachten?
As a “Security Engineer - Cloud”, you will be part of the team responsible for supporting and strengthening the organization’s security by working closely with the external SOC, which provides managed detection and response services.
You continuously monitor for potential threats and are passionate about everything related to cyber-threats. You contribute daily to the reliable and secure operation of the organization’s infrastructure.
Your focus is on managing and expanding the Azure cloud environment, specifically with the Microsoft Defender security suite. You ensure the Azure environment is properly secured through policies and that everything running in the cloud is well protected. You search for vulnerabilities or security risks within the Azure environment. You also manage the Sentinel SIEM environment and act as the point of contact for onboarding new log sources. You are an expert in the Microsoft Security Suite as well as Sentinel and are eager to share your experience with colleagues.
As part of the Security Operations team, you are involved in monitoring, detecting, analyzing, and responding to security incidents and play a crucial role in safeguarding the organization and its assets. You handle tickets for incoming events, identifying, categorizing, prioritizing, and investigating events and threats.
You also work together with other teams to improve the security infrastructure and help develop and implement security procedures and processes.
Role
Responsibilities
- Identify and mitigate threats and attacks.
- Analyze incidents (including phishing) and determine their impact and threat level.
- Respond to incidents and implement measures to prevent future incidents (detection, analysis, response, recovery).
- Follow up on incidents detected by the external SOC partner and take appropriate action.
- Perform on-call duties during office hours.
- Activate a CSIRT response when required.
- Communicate with end users regarding security incidents.
- Manage cybersecurity tools on a day-to-day basis.
- Report operational security KPIs (security dashboard) and recommend improvements.
- Collect and follow up on information sources (vulnerability management, attack-surface monitoring systems, etc.).
- Serve as a permanent point of contact for the external monitoring partner.
Profile
Required Experience & Skills
- Demonstrable experience as a Security Consultant in data, infrastructure, or application environments.
- Demonstrable expertise in a specific information security domain (e.g., ISMS processes, vulnerability analysis, pentesting, application security optimization, PAM, encryption solutions).
- Demonstrable experience analyzing, optimizing, and documenting security processes and governance.
- Demonstrable experience with security management techniques or frameworks (ISO27000, COBIT, NIST, OWASP, CIS Controls).
- Demonstrable knowledge and experience through relevant certifications (e.g., CISM, CISSP, CEH).
- Language requirement: Dutch at European CEFR level C2.
Must-haves
- 5 years of demonstrable experience as a Security Consultant – Senior level
- Experience analyzing, optimizing, and documenting security processes and governance
- Experience with Azure and Microsoft Defender Security Suite
- Experience with Microsoft Sentinel
- Experience with MS 365
- Experience with the Microsoft Azure Security Suite
- SOC experience
- Expertise in a specific information security domain
- Upload of relevant CyberSecurity certifications
- Dutch CEFR C2 language level
Should-haves
- Experience in the public sector
- Experience with security management frameworks (ISO27000, COBIT, NIST, OWASP, CIS Controls)
- Certifications such as CISM, CISSP, CEH
- Knowledge of network protocols, topologies, and architectures
- Knowledge of telecom and network infrastructure
- SC-200 certification
- Experience onboarding on-premise log sources into Sentinel in a hybrid setup
Offer
Freelance yearly renewable long term contract
3 days remote
