Job Title: Senior Cybersecurity Engineer - Offensive & Defensive Security

Location: Deurne (Hybrid - 3 days onsite per week)

Role Overview:

We are seeking a technically proficient and highly motivated Senior Cybersecurity Engineer with a strong focus on both offensive and defensive security operations. This is a hands-on role for an individual who thrives in fast-paced environments, is deeply technical, and enjoys working directly with real-world cyber threats. The ideal candidate has a strong foundation in penetration testing, threat detection, and incident response, and can architect and implement robust security systems from scratch.

Key Responsibilities:

🔍 Offensive Security (Red Teaming):

• Perform advanced penetration testing across infrastructure, networks, applications, and APIs.
• Simulate sophisticated threat actor techniques and advanced persistent threats (APTs).
• Lead ethical hacking initiatives and comprehensive vulnerability assessments.
• Utilize industry-standard frameworks such as OWASP, MITRE ATT&CK, and NIST 800-115.
  
  

🛡️ Defensive Security (Blue Teaming):

• Operate and optimize SIEM platforms (e.g., Splunk, Microsoft Sentinel, QRadar).
• Analyze threat intelligence feeds and respond to active security incidents.
• Conduct root cause analyses and propose actionable mitigation strategies.
• Engage in threat hunting, malware analysis, and behavior-based detection.
  
  

🛠️ Security Engineering & Architecture:

• Design and enforce secure software development practices (DevSecOps).
• Implement and harden network and endpoint defenses including firewalls, IDS/IPS, and Zero Trust models.
• Develop secure authentication systems and manage encryption protocols.
• Champion secure CI/CD pipelines and API security across development teams.
  
  

📚 Standards, Compliance, and Best Practices:

• Maintain and apply industry-recognized technical certifications (e.g., OSCP, CEH, CISSP).
• Participate in red/blue team simulations and internal security assessments.
• Provide expert-level guidance on secure coding, DevOps security, and threat prevention strategies.
  
  

Candidate Profile:

Must-Have Qualifications:

• 5+ years in cybersecurity roles with a strong focus on red/blue team operations.
• Proven expertise in penetration testing, ethical hacking, and offensive security.
• Solid experience with SIEM, EDR, IDS/IPS, malware analysis, and threat detection.
• Strong understanding of Zero Trust architecture, network security, and endpoint protection.
• Skilled in scripting languages such as Python, Bash, or PowerShell.
• Familiarity with OWASP Top 10, MITRE ATT&CK, NIST, and secure SDLC practices.
• Dutch Speaker
  
  
  

Preferred Certifications:

• OSCP, CEH, GPEN, GWAPT, CISSP, CCSP, SSCP, or similar.
• Additional credentials from ISACA, SANS, or OWASP are a plus.
  
  
  

Nice to Have:

• Experience in cloud security (AWS, Azure, or GCP).
• Knowledge of container security (Docker, Kubernetes).
• Understanding of ISO 27001 from a technical implementation standpoint (not audit-focused).