Intermediate SecOps Engineer

This is a fully remote position, open to applicants in Belgium.

📋 Description

• Design, sustain, and enhance detection rules, alerts, dashboards, and monitoring workflows across infrastructure, cloud services, identity systems, endpoints, and application platforms.

• Engage in incident response activities, which include triage, investigation, containment, remediation coordination, and post-incident assessment.

• Operate and advance security monitoring tools, including SIEM, log aggregation, alerting, vulnerability management, and associated detection and response platforms.

• Proactively examine suspicious activities, anomalous behaviors, and emerging threats that impact infrastructure and services.

• Develop and uphold incident response playbooks, escalation procedures, actionable security guidance, and operational documentation for cloud operations, product development, and systems engineering teams.

• Collaborate with the systems engineering team to identify and rectify security vulnerabilities in cloud, container, Linux, network, identity, and service configurations.

• Actively engage in thorough disaster recovery planning, business continuity strategy development, and live simulations/exercises to ensure system resilience and team preparedness.

⛳️ Requirements

• 3–5+ years of professional experience in a security operations, infrastructure security, incident response, or a related operational security role.

• Practical experience with security monitoring, alert triage, incident investigation, and response workflows.

• Proficient with SIEM, log aggregation, alerting, or detection engineering tools.

• Solid understanding of Linux systems, networking principles, identity and access management, and common infrastructure attack strategies.

• Familiarity with containerized environments (Docker, Kubernetes, OKD/OpenShift) and public cloud platforms (AWS, Azure, or GCP).

• Experience in writing or maintaining operational runbooks, response procedures, detection rules, or incident documentation.

• Working knowledge of common security frameworks and attack techniques, such as MITRE ATT&CK, CIS Controls, or similar.

• Relevant certifications are highly preferred (e.g., CompTIA Security+, CEH, CSSLP, CCSP, or cloud security certifications).

🏝️ Benefits

• Fully remote positions

• Work-life balance support

• Friday flex-time

• Right-to-disconnect policy

• Corporate Recharge days

• Comprehensive benefits package