Security Operations Center Analyst

SOC Manager & SOC Analysts – ZZP 12 Months Rolling - Hybrid Working (Randstad)

CBSbutler are working with a Dutch Cyber Security consultancy, who are looking for both a SOC Manager and SOC Analysts to join on 12 month rolling ZZP engagements, starting ASAP ideally but notice periods can be accommodated.

Despite their small size, they provide blue teaming services and the SIEM solution for the EU in Brussels, as well as ODC Noord, ASML and a number of other top Benelux enterprises. They work on some of the most interesting and high impact cyber security projects in the region. We can't disclose much about these roles as they are highly confidential, but full details will be shared should you be selected to interview.

These will be fully on site working. Competitive day rates depending on experience and level. If you're not interested but know someone who would be, we do pay referral fees for successful referrals!

What you'll do:

SOC Manager

• Lead and manage the daily operations of the Security Operations Centre
• Oversee a team of SOC Analysts, set priorities, and ensure high quality incident handling
• Develop and maintain SOC processes, playbooks, and detection rules
• Drive continuous improvement of threat detection, response, and reporting capabilities
• Liaise with clients and stakeholders, providing regular updates and executive level reporting
• Manage escalations, major incidents, and post incident reviews

SOC Analysts (Tier 2/3 level preferred)

• Monitor security events and alerts in real time across multiple client environments
• Perform detailed log analysis, threat hunting, and incident investigation
• Triage and respond to security incidents, containing threats and coordinating remediation
• Create and tune detection rules and signatures to reduce false positives
• Collaborate with red team and client blue teams to improve overall security posture
• Document incidents thoroughly and contribute to client reports and lessons learned

Skills & experience:

Common to both roles

• Proven experience working in a Security Operations Centre (blue team environment)
• Strong knowledge of MITRE ATT&CK framework and current cyber threat landscape
• Hands on experience with a SIEM platform, although ELK stack is preferred
• Familiarity with endpoint detection tools, network monitoring, and threat intelligence feeds
• Excellent analytical skills and ability to work under pressure
• Fluency in English & Dutch required

SOC Manager specific

• 5+ years in SOC operations, with at least 1 years experience in a leadership or senior analyst role
• Experience managing teams, developing processes, and handling client relationships
• Strong communication and stakeholder management skills

SOC Analyst specific

• Hands on SOC experience (Tier 2 or Tier 3 preferred)
• Proficiency in log analysis, Wireshark, scripting (Python/PowerShell), and incident response
• Relevant certifications advantageous (e.g. GCIH, GCIA, Splunk Certified, CompTIA CySA+ etc.)

If you're interested in either the SOC Manager or SOC Analyst role, please send through an updated CV and I will give you a call to discuss in more detail ASAP.

Looking forward to hearing from you either way!