Our client is looking for a Senior IT Security Engineer
Description
Context
Our client in the water sector is the reference partner for stakeholders in the water industry in Wallonia for their digital transformation projects, supporting in particular the SWDE, the SPGE and several Approved Sanitation Organisations (OAA).
Recognised as an essential entity under the NIS2 directive, our client is involved in the design, coordination and implementation of strategic IT projects covering infrastructure and information security for the entire sector.
Within this context, the Cybersecurity department wishes to strengthen its team with an experienced Security Engineer, responsible for contributing to the protection of information systems of a Walloon intermunicipal organisation active in the fields of water (sanitation and drinking water), territorial planning, economic development and renewable energy.
The consultant will join the internal security team and work closely with the technical teams of the concerned partner organisation.
Mission
The Senior IT Security Engineer strengthens the organisation’s ability to protect its internal systems and those of its clients.
In collaboration with the CISO and the Information Security Officer, he actively participates in operational security (SecOps), Security Center optimisation (SIEM/EDR), SOC follow-up, as well as hardening and technical reviews of environments.
The role includes a strong multi-client dimension: configuration, monitoring and securing of outsourced infrastructures within the framework of MSP activities.
The objective is to improve the overall security posture, contribute to NIS2 compliance, and support the CISO in the technical and organisational activities of the security department.
Main Responsibilities
Operational Security (SecOps – Internal & Clients)
- Administer, configure and optimise Security Centers (SIEM, EDR, vulnerabilities).
- Manage SOC alert follow-up: qualification, analysis, escalations, coordination with technical teams.
- Participate in incident response activities: containment, analysis, remediation, reporting.
- Implement and adjust detection rules, dashboards, alerts and playbooks.
Client Environment Management & Security
- Configure and secure client technical environments: servers, networks, cloud, firewalls.
- Maintain and adjust security tools: EDR, SIEM, IDS/IPS, anti-malware solutions.
- Develop security-related projects such as unified vulnerability management.
- Apply hardening benchmarks (CIS, ANSSI, NIST).
- Perform technical security reviews of projects and propose remediation plans.
- Document architectures, configurations and security settings.
Governance & NIS2 Compliance
- Contribute to internal and client technical risk analyses.
- Participate in drafting and improving policies, procedures and processes.
- Prepare and support audits (internal, client, NIS2).
- Produce posture reports, KPIs and security dashboards.
Cross-Functional Support & Coordination
- Collaborate with systems, network, development and support teams.
- Provide technical security advice in internal and client projects.
- Participate, where necessary, in security awareness activities for teams.
Profile
Soft Skills
- Rigour and attention to detail, essential for critical environments.
- Analytical mindset, with the ability to diagnose and resolve complex incidents.
- Clear communication skills with both technical and non-technical stakeholders.
- Autonomy and initiative, with the ability to prioritise in a multi-client environment.
- Collaborative mindset, working closely with the CISO, ISM and technical teams.
- Service-oriented attitude, essential for MSP activities and client relationships.
Technical Skills (Functional / Supervisory Level)
- Strong knowledge of Windows Server and Linux environments.
- Mastery of networking concepts: firewalls, VLANs, VPNs, routing, segmentation.
- Experience with EDR/XDR solutions, SIEM platforms and SOC tools.
- Practical experience with system hardening and benchmarks (CIS, NIST, ANSSI).
- Knowledge of Azure / Entra ID / Microsoft 365 / Microsoft Security Center is appreciated.
- Understanding of vulnerabilities, CVEs, scoring methodologies and remediation processes.
- Strong technical documentation skills.
- Experience in multi-client / MSP environments is a major asset.
- Language: Perfect command of French and technical English.
Experience
- 5 to 7 years of experience in a Security Engineer, SecOps Engineer, or Security-Oriented System/Network Engineer role.
- Proven experience in the administration of security tools (EDR, SIEM, monitoring).
- Experience in incident response or SOC operations is desirable.
- MSP, MSSP or multi-client experience is highly appreciated.
- Demonstrated knowledge of the NIS2 directive, ISO 27001 or equivalent frameworks.
- Technical or security certifications appreciated (MS-500/SC-200, CySA+, CEH, etc.).
