Cybersecurity Operations Engineer – Infrastructure Security & Maintenance (IOT Systems)

We are hiring a Cybersecurity Operations Engineer to join a long-term programme supporting critical infrastructure for a global player. You will be responsible for the ongoing cybersecurity posture, systems hardening, patch and upgrade cycles, and threat management of an air-gapped, multi-component IOT infrastructure.

The role involves a blend of onsite execution, remote analysis, and cross-domain coordination, requiring advanced knowledge of system security engineering, vulnerability lifecycle management, secure operations, and compliance monitoring.

This is a technically challenging and impactful position ideal for candidates with deep security operations experience in high-assurance or regulated environments.

• Conduct periodic (monthly) vulnerability scans on air-gapped systems using enterprise-grade tools.
• Ensure offline scanners are updated with the latest CVE definitions and perform comprehensive system sweeps.
• Perform vulnerability triage, impact analysis, and severity scoring using industry standards such as CVSS.
• Track remediation lifecycle and re-scan post-remediation to verify effectiveness.
• Generate and deliver classified vulnerability reports, aligned with project-specific data protection policies.

• Design and maintain structured patch management schedules, in coordination with system stakeholders.
• Perform non-regression testing of all patches and upgrades in a validation/staging environment prior to production deployment.
• Apply vendor-recommended and scanner-detected patches/upgrades on a monthly basis.
• Maintain rollback procedures, version control, and post-deployment monitoring.

• Conduct quarterly network flow analysis to identify unauthorized communication paths or configuration drift across system nodes.
• Update and maintain a live network map report reflecting accurate traffic topology and port/service dependencies.
• Execute system configuration assessments (OS versions, patch levels, software stack, network interfaces) quarterly and document deviations.
• Collaborate with the architecture team to ensure enforced configurations align with secure baselines (e.g., CIS benchmarks, STIGs).

• Perform obsolescence reviews of hardware/software components and recommend lifecycle management actions.
• Generate and maintain an Obsolescence Report, identifying EOL/EOSL components and mitigation strategies.

• Act as the first escalation point for cybersecurity incidents affecting development, staging, or production environments.
• Report incidents to designated security operations centers per protocol.
• Document security events, incident response activities, and preventive control improvements.
• Track vulnerabilities using project-specified tooling and submit monthly governance reports.

• 5+ years of experience in Cybersecurity Operations, SOC, or Information Security Engineering roles.
• Demonstrated experience managing vulnerability scanners, patching solutions, and security compliance in air-gapped or secure environments.
• Experience supporting mission-critical or space/aerospace-grade systems is highly desirable.

• Proficiency with tools such as Tenable.sc/Nessus, Qualys, Rapid7, OpenVAS, or similar for vulnerability scanning.
• Experience with SIEMs, patch management tools (WSUS, Red Hat Satellite, Ansible, etc.), configuration management platforms, and secure baseline enforcement.
• Strong knowledge of network protocols, firewall rule audits, traffic flow mapping, and security zoning.
• Understanding of operating systems (Windows, RHEL/CentOS, Ubuntu), virtualization environments, and container security.
• Familiarity with CVE/CWE/NVD standards, data classification rules, and compliance reporting frameworks.

• Bachelor’s or Master’s degree in Cybersecurity, Information Systems, Computer Science, or related field.
• Mandatory: CISM, CISSP, or equivalent.
• Bonus: CEH, OSCP, ITIL SecOps, ISO/IEC 27001 Lead Implementer/Auditor.

• Must hold or be eligible to obtain an EU Personal Security Clearance (PSC).

• Hybrid work model with a mandatory on-site presence in Belgium or Luxembourg for key operational and physical access duties.

🔎 Are you passionate about hardening critical systems and safeguarding infrastructure at scale? Apply now to join a cutting-edge cyber team working at the core of Europe’s most advanced operations environment.