Cyber Security Implementer

Cyber Security Implementer

Netcompany-Intrasoft

Brussels, Belgium

Job Description

Are you ready to discover the role of a Cyber Security Implementer in Netcompany?

As a Cyber Security Implementer, you will:

• Design, implement, and maintain detection rules and use cases to identify potential security threats (Detection Engineering).
• Conduct purple team exercises by simulating real-world attacks and collaborating with defensive teams to improve detection and response capabilities.
• Lead advanced incident response activities (L3), including in-depth analysis, containment, eradication, and recovery.
• Perform digital forensics investigations to determine root causes, assess impact, and support post-incident reporting.
• Automate security processes and workflows within a DevSecOps framework to enhance efficiency and consistency.
• Proactively conduct threat hunting activities to identify hidden threats and vulnerabilities across the environment.
• Continuously improve security monitoring, detection capabilities, and response procedures based on emerging threats and lessons learned.
• Collaborate with cross-functional teams to strengthen the organization’s overall security posture.

Qualifications

What would make you a fit for the role:

• Bachelor’s or Master’s degree in Computer Science or a related field.
• Fluency in written and verbal English, any other EU language knowledge is an advantage.
• At least 3 years of proven experience in designing, deploying and maintaining cyber‑security tooling on container‑based platforms.
• Advanced hands‑on expertise with container technologies (Docker + Swarm or Kubernetes) and orchestration of security services.
• Strong proficiency in GitLab/GitHub workflows, including CI/CD pipeline creation, automated testing, and secure code‑release processes.
• Demonstrated ability to build no‑code/low‑code automation (e.g., Tines, n8n, Zapier) for security‑operations tasks and infrastructure provisioning.
• Working knowledge of SOC functions: threat‑hunting, incident‑response, log‑analysis and ticketing (e.g., Splunk/Cribl, Elastic, TheHive,…).
• Hands‑on and administration experience with at least one of the following threat‑intelligence or analysis platforms: Arkime, VMRay, MISP; considered a strong asset.
• Familiarity with AI/ML‑assisted security solutions (e.g., model‑driven anomaly detection, code‑generation assistants) and willingness to integrate AI into daily workflows.
• Excellent scripting skills (Python/Bash/PowerShell) to develop and maintain security‑automation scripts and custom tooling.
• Ability to collaborate with cross‑functional IT teams, communicate findings clearly, and document all changes in line with clients governance standards.