Belgium Remote (Country)

NVISO is hiring a Security Operations Engineering Consultant

About the Role

As a Security Operations Engineering Consultant, you will play a key role in shaping and delivering security operations solutions for clients across multiple industries. Your work will center on integrating and managing log sources, developing detection logic, and enhancing SOC capabilities through robust engineering practices.

Key Responsibilities

Lead the planning and integration of new log sources into security monitoring platforms
Diagnose and resolve technical issues involving logging systems in coordination with clients and vendors
Develop detailed technical playbooks and operational procedures
Design and deploy correlation rules tailored to threat intelligence and client-specific needs
Support the refinement of incident response processes with expert analysis and recommendations
Maintain current knowledge of evolving SOC technologies, tools, and methodologies

Qualifications

You bring a solid foundation in security operations with hands-on experience in SIEM platforms and detection engineering. Candidates must be citizens of one of the 32 NATO member states.

Proven expertise with Azure Sentinel and Microsoft security technologies, or platforms such as Elastic, Splunk, or LogPoint
Experience configuring and optimizing detection rules using SIEM query languages
Familiarity with Sigma and YARA rule formats
Strong written and verbal communication skills in English
Ability to work autonomously while collaborating across teams
Skill in presenting technical work clearly to peers and stakeholders
A proactive, team-focused mindset driven by purpose and accountability

Preferred Background

Minimum of two years’ experience as a SOC Analyst
Knowledge of Dutch or French is advantageous

Technology Environment

You’ll work with a modern security stack including Azure Sentinel, the Microsoft Security suite, Elastic, Splunk, LogPoint, Sigma, and YARA.

What We Offer

10,000€ training budget and 10 training days every two years
Opportunities to earn elite technical certifications (GSE, GXPN, GREM, GCFA, OSCP, etc)
Learning from SANS-certified instructors and experienced security professionals
Support to present at major cybersecurity conferences
Flexible work hours and remote work options
32 days of annual leave
A personal career coach to support your growth and well-being
Regular team events and engagement activities
A dynamic, entrepreneurial culture that values innovation and initiative
Inclusion in a supportive environment that emphasizes authenticity, growth, and enjoyment

Work Environment

This role is based in Belgium with flexible scheduling and remote work options available. The company promotes an agile, mission-driven culture built on integrity, collaboration, and technical excellence.

Our Values

We are Proud
We Break Barriers
We Care
No BS!

Required Skills

Azure SentinelMicrosoft Security stackSIEMElasticSplunkLogPointSigmaYARASIEM query languagesDetection rule tuningIncident responsePlaybook developmentSOC operationsCybersecurity consultingSecurity operations engineering Azure SentinelMicrosoft Security stackSIEMElasticSplunkLogPointSigmaYARADetection rulesSIEM query languages

Freelancing without stability?

Get steady projects, keep your freedom

Iglu connects you with international clients and handles contracts, payments, and admin. You get consistent work and flexibility — no more chasing invoices or worrying about gaps.

Consistent client projects

Contract & payment management

Flexible work schedule

Revenue-sharing compensation

See open positions

Work from anywhere

About company