The Security group of the Department of Computer Science at TU Eindhoven is looking for one or two cybersecurity engineers (junior/medior) to expand its technical staff and to drive the expansion of the Eindhoven Security Hub SOC.

As a cybersecurity engineer, you will analyze evidence of incoming threats to our customers based on the latest information that is developing on the market, such as vulnerabilities. Knowing how to analyze security events using SIEM technologies and being able to handle them is something that you know how to do and gets you excited. We expect you to identify threats to the organization and being active in reporting and evaluating these jointly with colleagues and supervisors. Contributing to the deployment, management, and growth of a cloud-native, next-generation, highly scalable security information platform is also part of the job. You will be involved in the evolution discussion of the platform with all development teams to understand the infrastructure and manage the right technology and business alignment with partners, working closely with engineers, analysts and researchers and help driving the ESH-SOC maturity lifecycle to stay ahead of the innovation curve.

Responsibilities

• Analysis of security events (Tier 2): deconstruct and analyze complex patterns from data, relating contextual factors (e.g., related to a customer's environment) to evidence from the data.
• Creation/expansion of tools to translate security monitoring use-cases in monitoring rulesets, and to simplify service operation and monitoring.
• Contributing to the development and maintenance of the ESH-SOC infrastructure and of the security sensors deployed at customer facilities, assuring timely updates and a smooth operation cycle.

• You work at HBO/MSc level and have at least some experience in security monitoring. For example, you have some working experience in a SOC, or matured lab experience on security monitoring from higher education courses or in other settings or possess security certifications.
• You have knowledge of networks, (operating) systems and applications, attack techniques and/or malware.
• You have some experience with scripting languages, (e.g., Python, Bash); maintaining Linux-based environments and at least one data analytics tool (e.g., Elastic, Hadoop, Splunk) are a plus.
• Work experience with open-source security solutions, e.g., Security Onion, Elastic Stack, the Hive, Docker, virtualization tools is a plus.
• The education preference for at least a Bachelor degree, preferably in (technical) computer science, forensics, etc.

• A challenging job in a dynamic and ambitious university.
• A position for 1 year with the possibility of an extension.
• A gross salary of max scale10 depending on experience.
• Annually 8% holiday allowance and 8.3% end of year allowance.
• A broad package of fringe benefits (including an excellent technical infrastructure, childcare, moving expenses, savings schemes, coverage of costs of publishing the dissertation and excellent sports facilities).