Job Title: Senior Cybersecurity Engineer – Offensive & Defensive Security
Location: Deurne (Hybrid – 3 days onsite per week)
Role Summary:
We are looking for a highly skilled, technically hands-on Cybersecurity Engineer with deep expertise in offensive and defensive security operations. The ideal candidate will combine strong technical proficiency in threat detection, incident response, and penetration testing, with a solid understanding of cybersecurity engineering practices. This role is not governance/compliance-heavy — we’re looking for someone who thrives in dynamic environments, engages directly with cyber threats, and builds security systems from the ground up.
Key Responsibilities:
🔐 Offensive Security / Red Teaming
- Conduct penetration tests on infrastructure, networks, applications, and APIs.
- Simulate sophisticated attack vectors and APT scenarios to identify vulnerabilities.
- Design and execute ethical hacking engagements and vulnerability assessments.
- Use frameworks such as OWASP, MITRE ATT&CK, and NIST 800-115.
🛡️ Defensive Security / Blue Teaming
- Operate and enhance SIEM platforms (e.g., Splunk, Sentinel, QRadar).
- Monitor threat intelligence feeds and respond to live security incidents.
- Conduct root cause analysis of breaches and propose mitigation strategies.
- Engage in threat hunting, malware analysis, and behavior-based detection.
🔧 Security Engineering & Architecture
- Design and implement secure software development practices (DevSecOps).
- Configure and harden firewalls, IDS/IPS, zero-trust architectures, and endpoint protection.
- Build and maintain secure authentication and cryptographic systems.
Required Skills & Qualifications:
- 5+ years of technical cybersecurity experience, preferably in offensive/defensive security roles.
- Proven hands-on experience with penetration testing, ethical hacking, and red teaming.
- Strong knowledge of SIEM, EDR, IDS/IPS, malware analysis, and threat intelligence.
- Experience working with firewalls, zero-trust, and advanced network architectures.
- Familiarity with cryptography, API security, and secure SDLC methodologies.
- Fluent in scripting languages (e.g., Python, Bash, PowerShell).
- Deep understanding of OWASP Top 10, MITRE ATT&CK, NIST frameworks.
Preferred Certifications:
- Offensive Security Certified Professional (OSCP)
- Certified Ethical Hacker (CEH)
- GIAC Penetration Tester (GPEN), GWAPT
- CISSP, CCSP, SSCP
- Other ISACA or OWASP technical credentials
Nice to Have:
- Experience in cloud security (AWS, Azure, GCP).
- Experience with container security (Docker, Kubernetes).
- Familiarity with ISO27001, but from a technical implementation angle, not just audit/compliance.
What Success Looks Like:
- You identify and fix vulnerabilities before they’re exploited.
- You lead red/blue team engagements that significantly improve our security posture.
- You automate detection and response to real-world threats using advanced tools.
- You’re hands-on, proactive, and always ahead of the adversarie