Security Analytics Engineer

We are Team possible – the people behind Davinsi Labs, Proximus, Proximus NXT, Codit, Proximus Ada, and more. Nice to see you here! United by a shared purpose, we’re building a smarter, trustful and more connected world.

That means embracing technology and celebrating change. We think possible and then make it possible. And of course, we love what we do. Sounds like your kind of place? Your job You will join our MSP teams focusing on Managed Detection Response (MDR) services, with a specific role in our Microsoft Sentinel-focused MDR team .

Your primary objective as an engineer will be to continuously enhance our Sentinel platform, detection frameworks, and threat hunting capabilities across complex customer environments – offering our customers the comfort of knowing . Your expertise will help shape the next evolution of our MDR service across the Microsoft ecosystem.

You will contribute to the following technologies: Microsoft Sentinel Microsoft Defender XDR Logic Apps / Automation Microsoft Data Lake Broader integrations with cloud, network, and third-party security tooling Key Responsibilities Research Investigate new methods to detect malicious behaviour in customer environments. Simulate attacker techniques and translate findings into actionable Sentinel detections, enrichment logic, and hunting queries.

Detection Frameworks Content Development

Create and continuously improve detection use cases, rules, and analytics for Sentinel and our broader MDR platform. Map detection content to best-practice frameworks such as MITRE ATT CK. Build foundational frameworks for Threat Intelligence, Threat Hunting, Dashboarding , and Context Enrichment .

Detection Rule Lifecycle Management

Develop, activate, tune, and maintain analytics rules within Microsoft Sentinel. Manage our full detection library in version control (Git). Produce coverage heat maps for customers to identify gaps and improve resilience.

Threat Hunting Incident Detection

Conduct proactive hunting missions using Sentinel and Microsoft XDR data sources. Validate detection capabilities in lab and live environments. Collaborate closely with Incident Response teams to define follow-up steps, investigation playbooks, and response recommendations.

Platform Lifecycle Management

Ensure the reliability, scalability, and performance of our Sentinel MDR platform. Implement best practices and industry standards to safeguard the availability, integrity, and accuracy of customer data and detections.

Dashboarding Reporting

Create meaningful dashboards, workbooks, and insights that empower SOC operations and give customers clear visibility into their security posture.

Documentation

Develop high-quality, repeatable documentation to ensure consistent processes across teams and customers. Serving as a Subject Matter Expert Act as a trusted advisor for internal teams, customers, and vendors. Stay up-to-date with the Microsoft security ecosystem, new TTPs, and evolving trends within cloud, SIEM, and XDR technologies.