Information Security Engineer
Indexed description
Description:
"As a senior Information Security Engineer, you have over 5 years of experience in proactively and reactively monitoring and remedying security breaches :
- Usually, you are part of the SOC (security operations center);
- You investigate suspicious activities and take remediating actions;
- You maintain Security Monitoring Tools to effectively secure and monitor the different systems;
- You perform penetration tests to find any flaws;
- You document, test and monitor any security breaches and assess their damage."
ICT Knowledge
Cyber risk management
Software Development Life Cycle (SDLC)
Technical skills
Apple MAC
Apple OS X
Linux
Shell scripting
SIEM
Agile Methodology
Detection Engineer (Mac/Linux)
🚀 Are you passionate about cyber security and building smart detection systems?
We are looking for a colleague who will actively contribute to protecting our organisation and stakeholders against cyber threats, with a strong focus on Mac and Linux environments.
You will play a crucial role in our SOC (Security Operations Centre), the beating heart where security events are collected, analysed and translated into concrete actions.
Within the SOC, you’ll work on the SIEM, where logs from various systems converge and where you’ll make a difference by designing and continuously improving targeted detections (use cases).
Does translating threats into concrete detection rules and improving our visibility on Mac and Linux systems give you a buzz? Then this job is for you!
🦺 Your tasks will include:
- Designing, building and maintaining detection use cases for macOS and Linux platforms
- Analysing security logs (such as syslog, audit logs, EDR telemetry, etc.) and translating them into actionable detections
- Improving and fine-tuning existing use cases to reduce false positives and increase detection quality
- Collaborating with SOC analysts to align detections with real-world threats
- Contributing to the expansion of logging and monitoring coverage on Mac and Linux
- Using frameworks such as MITRE ATT&CK to build detections in a structured way
- You will be working in Splunk – training will be provided!
🧩 What do we expect from you?
- Strong communication skills: you can translate technical detections into clear insights for colleagues and stakeholders
- A true team player who enjoys working within a SOC environment and supporting other colleagues
- A background in cyber security is certainly a plus, but not essential
- You have experience in cyber security or threat detection, or a strong background in macOS/Linux as a systems engineer. We’ll help you bridge the gap to the other domain so you can become an expert in both
- Analytical thinking, a critical eye and a structured approach to work
- Knowledge of shell scripting and regex is a plus
🌟 What do we offer you?
- A warm and supportive team where knowledge sharing is central
- A mentor to guide you in detection engineering and SOC processes
- Training in Splunk and guidance on building high-quality use cases
- Opportunities for growth within the cyber security field
- A role with real impact in a rapidly evolving and socially relevant sector
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search