Senior SOC Analyst

To support further growth of our Security Operations Center, we are looking for an experienced SOC analyst to join our team. The Security Operations Center is built on Microsoft products (Microsoft Sentinel and Microsoft Defender XDR) and monitors customers across the globe. Despite heaving our heads firm in the cloud, many protected/monitored assets are hybrid or on-premises. We are looking for an analyst that has extensive experience working in a Security Operations Center as a SOC analyst and has experiences with a large number of the following technologies:

• Windows, Linux and macOS Operating Systems
• Network data: Firewalls, proxies, switches....
• Active Directory Domain Servies and Certificate Services
• Microsoft Exchange and Microsoft SQL

The SOC team consist out of several consultants supported by an internal development team; collaboration is key. We encourage collaboration and continuous improvement to avoid alert fatigue, and drive innovation.

Knowledge of the Microsoft Security stack, including knowledge of KQL is preferred, but not required.

What will your workday look like?

• Work on security incidents received by our SOC.
• Handle as an incident manager during escalations to bridge the internal SOC team and the customer teams.
• Communicate clearly with customers: adding context and answering any questions
• Support junior analysts in their investigations and support their growth.
• Proactively hunt for signals and threats in our customer's environment
• Identify improvements in terms of detections and automation.
• Identify misconfigurations in the customers’ environment and flag them to the Service Delivery team.
• Support our 24/7 service by engaging in our on-call shift system.
• Assist the detection engineering team in defining and developing use cases.

Whom are we looking for?

• Although remote working is the norm, we are looking for people based in Belgium or The Netherlands, who are able to travel to our offices in Zele regularly.
• Willingness to deep dive into everything that the Microsoft Security stack has to offer.
• A continuous learner: diving into the unknown does not scare you.

Does this sound like you? Don’t hesitate to get in touch!

What do we offer?

Working with The Collective means joining a family of like-minded people, all eager to learn from one another. We are front-runners when it comes to adopting new technologies and are always looking for newer and better ways to handle things. As such, we provide ample opportunity to learn, test, grow and have fun. We’re on a magnificent journey, and would love to have you as part of it. Not convinced yet? Here are some other reasons why it's awesome to work with us:

• The opportunity to work in a young and enthusiastic SOC-team, with lots of opportunities and interesting customers to work on.
• The chance to further educate yourself in both the Microsoft Security stack, but also other products such as macOS and Linux.
• A competitive and flexible remuneration package with excellent fringe benefits, including a company car (Belgium), extensive health insurance (including non-hospitalization costs, teeth, etc.), phone, laptop, group insurance, homework allowance, home equipment allowance, travel insurance, additional days maternity or paternity leave, etc.
• A chance to work with industry experts. The Collective is the only Belgian-based SOC provider with Security MVPs on board.

Week Outline