SOC Analyst

Role Type: SOC Support Analyst (Second Line Support + Sentinel Management) Start Date: January 2026 (earlier availability strongly preferred) Work Location: Brussels, On-site 5 days/week in the first phase. Remote work possible later depending on client trust and performance. Number of Profiles Needed: • 1 primary SOC Analyst • 1 backup SOC Analyst (standby/rotation, supports when primary is sick or absent; can work on internal/client projects when not covering for Sertalink) 1. Experience Requirements • 2–5 years experience in SOC operations (Junior to Mid-level). • Preferably experience in a 24/7 MDR or SOC environment. • Strong Hands-on experience with Microsoft Security stack, including: o Microsoft Sentinel (administration, tuning, rule creation, use cases) - MUST junior senior level o Microsoft Defender for Endpoint (MDE) o Advantage: familiarity with Defender for Identity, Defender for Cloud Apps, or Purview. • Comfortable performing: o Alert triage (L1/L2) (eSentire MDR SOC takes care of all SOC, the support analyst will be secondline bridge between eSentire and Company local tech team) o Incident investigation and escalation supported by eSentire 2. Technical Skills Mandatory • Microsoft Sentinel – creation & maintenance of use cases, setting up alerting, dashboards, rule tuning • Microsoft Defender suite – alerts handling, configuration knowledge, policies, rule adjustments • Good understanding of: o SIEM/SOAR concepts o Threat detection & incident classification o Network and endpoint security fundamentals • Ability to document investigation steps and produce structured weekly reports Nice-to-Have • KQL scripting experience • Exposure to security frameworks (MITRE, NIST) • Basic knowledge of MISP or other threat intel platforms • Understanding of SOC procedures, escalation paths, KPIs • Experience working inside a critical infrastructure environment (energy, utilities) • eSentire training will happen/onboarding for the profile will happen 3. Soft Skills • Strong communication (must interact with company internal teams daily) • Professional, reliable, consistent on-site presence • Proactive problem solver, able to work independently • Team player (closely coordinating with backup profile and Sertalink team) 4. Role Responsibilities • Daily SOC Second Line Support (during business hours) • Follow-up and deeper analysis of L1 alerts • Manage and tune Microsoft Sentinel use-cases • Adjust Microsoft Sentinel and Defender rules as needed • Participate in reporting • Collaborate on incident investigations and assist with root cause analysis • Ensure compliance with Company's internal policies • Be available for on-site support (5 days/week), with potential remote after trust is built • Backup profile must be able to immediately take over in case of primary absence