CrawlJobs Logo
Sopra Steria Logo Sopra Steria · IT - Software Development

Cybersecurity Forensics Specialist

Belgium, Brussels · Job Posted March 19, 2026
Apply Position
Job Link Share

Job Description

As a Cybersecurity Forensics Specialist, you will play a key role in the investigation of targeted cyber‑attacks and complex security incidents affecting a European institution. Your work will directly support incident response, forensic investigations, intelligence production, and the continuous improvement of cybersecurity capabilities. This role operates in a high‑trust, high‑impact environment, handling sensitive and, in some cases, classified information.

Job Responsibility

  • Conduct computer and digital forensics investigations related to targeted cyber‑attacks and other serious security incidents, including those involving sensitive or classified information
  • Perform malware analysis and behavioural analysis to support cyber threat intelligence and attribution activities
  • Contribute to research and development initiatives aimed at improving detection, investigation, and response to evolving cyber threats
  • Participate in major IT security events, expert communities, and research forums in the cybersecurity domain
  • Contribute to internal working groups involved in the development and evolution of information security policies

Requirements

  • Microsoft and Linux operating systems
  • Security technologies such as antivirus solutions, firewalls, IDS, and network analysers (e.g. Wireshark)
  • Deployment and configuration of incident response and threat intelligence platforms (e.g. MISP, OpenCTI…)
  • Scripting and programming (Bash/Shell, Python
  • Java or C/C++ are considered assets)
  • Knowledge of offensive security techniques, including penetration testing
  • Use of digital forensics tools and understanding of forensic chain‑of‑custody principles
  • Malware analysis and reverse engineering, including disassemblers, debuggers, and sandboxing tools
  • Strong analytical and problem‑solving skills
  • Ability to produce clear, structured technical documentation and reports
  • Strong communication skills with both technical and non‑technical stakeholders
  • Mandatory Experience: at least 2 years of proven experience in digital forensics
  • Education: Bachelor’s degree or equivalent
  • Ability to work effectively in a multicultural, international environment
  • Autonomous, proactive, and a strong team player
  • Comfortable participating in multilingual meetings
  • Professional working proficiency in English and French (minimum B1/B2)
  • High level of discretion, integrity, and professionalism, due to the sensitive nature of the information handled

Nice to have

  • SANS certifications
  • EC‑Council (CEH)
  • Offensive Security (OffSec)

What we offer

  • An international and fast-paced work environment with exposure to European institutions
  • A people-first company culture that values innovation, collaboration, and diversity
  • Ongoing career development support tailored to your growth
  • A dynamic office atmosphere and plenty of social events: food trucks, BBQs, after-work drinks, family days, and more!
Sopra Steria - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cybersecurity Forensics Specialist

8 matching positions

Senior Specialist, Security Operations and OT Cybersecurity

This position will lead regional security operations and help expand and mature ...
Location
Location
United States , Princeton
Salary
Salary:
120000.00 - 140000.00 USD / Year
rennerbrown.com Logo
Renner Brown
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of cybersecurity operations experience, with direct involvement in SOC management, incident response, and threat detection
  • Demonstrated hands-on experience in OT/ICS environments within manufacturing, utilities, or other regulated sectors
  • Proven ability to lead cross-functional investigations and vendor-driven engagements in complex enterprise environments
  • Knowledge of relevant cybersecurity frameworks, such as NIST CSF and ISA/IEC 62443, and their application in industrial and regulated settings
  • Strong analytical and communication skills, with the ability to work effectively across technical and business teams
  • Expertise in Security Operations and Incident Response, including triage, investigation, containment, and recovery across IT, OT, and cloud domains
  • Hands-on experience with SOC technologies, including SIEM, SOAR, EDR/XDR, and forensic analysis platforms
  • Strong background in OT/ICS cybersecurity, securing SCADA, PLCs, and manufacturing systems using frameworks such as ISA/IEC 62443 and NIST CSF
  • Familiarity with threat detection engineering, use case development, and integration of threat intelligence into monitoring workflows
  • Experience collaborating on vulnerability management and remediation across IT and OT environments
Job Responsibility
Job Responsibility
  • Lead incident response activities for the region, coordinating with global teams for investigation, escalation, and remediation across IT, OT, and cloud environments
  • Manage and continuously improve security monitoring and detection to ensure high-quality visibility and responsiveness
  • Build and mature OT cybersecurity capabilities, partnering with manufacturing, infrastructure, and operations teams to secure industrial control systems, SCADA, PLCs, and laboratory environments
  • Manage and hold vendors accountable for activities such as threat hunting, penetration testing, and forensic analysis, ensuring service quality and effective outcomes
  • Drive the execution of global SOC playbooks, escalation procedures, and threat intelligence integration
  • Support remediation and post-incident activities to strengthen resilience across technology domains
  • Develop, maintain, and enhance operational runbooks and processes to support consistent, repeatable cyber defense practices
  • Collaborate with IT, engineering, and compliance teams to uphold corporate and regulatory security standards
What we offer
What we offer
  • annual performance bonus and comprehensive benefits package
  • Fulltime
Read More
Arrow Right

Senior Specialist, Security Operations and OT Cybersecurity

This position will lead regional security operations and help expand and mature ...
Location
Location
United States , Princeton
Salary
Salary:
120000.00 - 140000.00 USD / Year
rennerbrown.com Logo
Renner Brown
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of cybersecurity operations experience, with direct involvement in SOC management, incident response, and threat detection
  • Demonstrated hands-on experience in OT/ICS environments within manufacturing, utilities, or other regulated sectors
  • Proven ability to lead cross-functional investigations and vendor-driven engagements in complex enterprise environments
  • Knowledge of relevant cybersecurity frameworks, such as NIST CSF and ISA/IEC 62443, and their application in industrial and regulated settings
  • Strong analytical and communication skills, with the ability to work effectively across technical and business teams
  • Expertise in Security Operations and Incident Response, including triage, investigation, containment, and recovery across IT, OT, and cloud domains
  • Hands-on experience with SOC technologies, including SIEM, SOAR, EDR/XDR, and forensic analysis platforms
  • Strong background in OT/ICS cybersecurity, securing SCADA, PLCs, and manufacturing systems using frameworks such as ISA/IEC 62443 and NIST CSF
  • Familiarity with threat detection engineering, use case development, and integration of threat intelligence into monitoring workflows
  • Experience collaborating on vulnerability management and remediation across IT and OT environments
Job Responsibility
Job Responsibility
  • Lead incident response activities for the region, coordinating with global teams for investigation, escalation, and remediation across IT, OT, and cloud environments
  • Manage and continuously improve security monitoring and detection to ensure high-quality visibility and responsiveness
  • Build and mature OT cybersecurity capabilities, partnering with manufacturing, infrastructure, and operations teams to secure industrial control systems, SCADA, PLCs, and laboratory environments
  • Manage and hold vendors accountable for activities such as threat hunting, penetration testing, and forensic analysis, ensuring service quality and effective outcomes
  • Drive the execution of global SOC playbooks, escalation procedures, and threat intelligence integration
  • Support remediation and post-incident activities to strengthen resilience across technology domains
  • Develop, maintain, and enhance operational runbooks and processes to support consistent, repeatable cyber defense practices
  • Collaborate with IT, engineering, and compliance teams to uphold corporate and regulatory security standards
What we offer
What we offer
  • annual performance bonus
  • comprehensive benefits package
  • Fulltime
Read More
Arrow Right
New

Senior Consulting Director, Offensive Security, Proactive Services (Unit 42)

The Senior Consulting Director, Offensive Security will lead a team of technical...
Location
Location
United States , California
Salary
Salary:
236000.00 - 275000.00 USD / Year
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree with 12 years of experience, Master's degree with 8 years of experience, or PhD with 5 years of experience in Information Security, Computer Science, Digital Forensics, Cyber Security, or a related field
  • Extensive experience managing a team of consultants in the execution of a variety of penetration testing requirements
  • Exceptional communication and interpersonal skills, with the ability to serve as a front-facing representative of Palo Alto Networks, building and maintaining strong relationships with clients and stakeholders
  • Proven ability to draft thorough, articulate reports that convey technically complex material to an executive-level audience, ensuring clear understanding and informed decision-making
  • Experience scoping new opportunities with prospective clients, including drafting statements of work and proposals
  • Hands-on experience and deep understanding of tools and techniques for conducting network, wireless, and web application penetration testing
  • Ability to perform travel requirements as needed to meet business demands (on average 30%)
Job Responsibility
Job Responsibility
  • Provide a direct positive influence on the security posture of the world's most prestigious organizations by leading Unit 42's elite group of cybersecurity professionals in a variety of assessments for our top-tier clientele
  • Orchestrate and manage a dynamic schedule for a large team of elite offensive security specialists, ensuring optimal alignment of skill sets to meet client needs and maximize usage of available billable hours
  • Serve as a mentor to a team of offensive security personnel, maximizing professional development by providing ad hoc technical guidance and aligning employees with appropriate industry-standard training courses
  • Craft policies governing offensive security practices which reflect cutting-edge capabilities of advanced persistent threat actors and enforce security best practices that ensure the safety of our client's environments
  • Fulfill a customer-facing case leadership role for multiple concurrent events, guiding a technically diverse team of personnel through the complex challenges posed by some of the world's largest networks
  • Ensure high quality engagement outcomes and deliverables by providing quality assurance and technical oversight during engagements
  • Provide hands-on support for highly complex offensive security operations, utilizing cutting-edge techniques in technically challenging environments
  • Provide front-line support to the sales team by meeting with clients to clearly articulate various penetration approaches and methodologies to both technical and executive audiences
  • Transform customer requirements into executable statements of work, including a work breakdown structure with accurate estimates of billable hours for each discrete phase of testing
  • Develop scripts, tools, and methodologies to automate and streamline internal processes and engagements
What we offer
What we offer
  • restricted stock units
  • bonus
  • employee benefits
  • Fulltime
Read More
Arrow Right

Senior Cyber Threat Hunting Specialist

The Senior Cyber Threat Hunting Specialist supports the Missile Defense Agency (...
Location
Location
United States , Redstone Arsenal, Huntsville
Salary
Salary:
149000.00 - 158000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
June 22, 2026
Flip Icon
Requirements
Requirements
  • Must have 6 years of combined experience in Defensive Cyber Operations (DCO), to include enterprise-level security monitoring, incident response, and threat hunting
  • Must have 2 years of experience in management or leadership in a team environment
  • Must have experience applying the MITRE ATT&CK framework to security operations or intelligence analysis
  • Must have one, or more, of the following certifications: CFR, CySA+, GCFA, GCIA, GICSP
  • Must have an active DoW Top Secret with SCI Eligibility
  • Have experience with MS Office 365 suite applications (Word, Excel, PowerPoint, Visio, etc.)
  • Be able to multi-task and prioritize various projects and assignments in a dynamic work environment to meet scheduled/unscheduled customer requests
  • Be willing to travel up to 25% of the time
  • Be willing to support teams in a 24/7 operational environment and respond quickly to emergencies as needed
  • Have excellent communication skills, with the ability to translate complex technical findings into concise and actionable intelligence for senior leadership and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Serve as the primary Subject Matter Expert (SME) on advanced threats for the MDA Cyber Security Service Provider (MDA CSSP), collaborating with Defensive Cyber Operations, Cyber Threat Intelligence (CTI), Cyber Threat Emulation (CTE), and Forensics teams to drive unified defensive strategies
  • Develop and execute intelligence-driven hunt hypotheses to detect Advanced Persistent Threats (APTs) and anomalies that bypass traditional security controls
  • Map adversary Tactics, Techniques, and Procedures (TTPs) using the MITRE ATT&CK framework and integrate tactical threat intelligence into hunt operations
  • Analyze network traffic, host-based logs, and endpoint telemetry utilizing SIEM, EDR, and packet capture tools
  • Correlate asset, threat, and vulnerability data against known adversary exploits and techniques to determine impact and improve network defensive posture
  • Leverage actionable Cyber Threat Intelligence data to search for indicators of compromise and assist in the development of SIEM content/signatures to detect known attack patterns and make recommendations to improve detection capabilities, tune alerts, and close security gaps
  • Coordinate with CSSP subscribers to develop current configurations, rules, and signatures for cyber security related toolsets
  • Coordinate with CSSP subscribers to notify, investigate, and remediate discrepancies in security logging and CSSP alignment
  • Transition confirmed threats to Defensive Cyber Operations, providing forensic artifacts, root cause analysis, and actionable intelligence during active investigations
  • Create and maintain custom scripts (e.g., PowerShell, Bash, Elastic KQL, ES|QL) to automate data parsing, log aggregation, and routine hunt tasks
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Embedded Developer

As an embedded software engineer, you know how to create and maintain crucial pi...
Location
Location
United States , Annapolis Junction
Salary
Salary:
69400.00 - 158000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience with computer network operations capability development and engineering services, including defense and exploitation to gain strategic advantages
  • 7+ years of experience with computer programming in C/C++ and Python
  • Experience with software development, analytic development, and DevOps techniques for malware variants, advancing crypt capabilities, and emerging unknown protocols
  • Experience gathering requirements, designing and developing approaches for product security and resilience, cryptographic solutions, and anti-forensic measures
  • Experience with indigenous and vendor proprietary protocols
  • Experience using automation and virtualization to deploy, maintain, and sustain capabilities, developing and executing strategies for countering or mitigating environmental challenges, security and policy constraints, and system and architecture limitations
  • Experience designing, developing, debugging, and testing embedded software and performing requirements analysis to drive requirement specifications
  • Experience packaging embedded software products for release to government customers
  • TS/SCI clearance with a polygraph
  • Bachelor’s degree
Job Responsibility
Job Responsibility
  • Support the development of systems, sites, and tools for our clients
  • Write, test, and edit code in support of the team’s overall results
  • Develop and reverse-engineer software that supports hardware functionality on a wide range of devices
  • Configure solutions based on the platform being used
  • Work with other team leaders to troubleshoot and correct operational issues
  • Work with cybersecurity specialists to ensure that the software you’re creating is secure
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
  • Fulltime
Read More
Arrow Right

Senior Security Engineer (Red Team Specialist)

We are seeking a highly skilled and experienced Senior Security Engineer Penetra...
Location
Location
Indonesia , Jakarta
Salary
Salary:
Not provided
Flip
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related field
  • Relevant certifications such as OSCP, OSCE, GPEN, or GXPN are highly desirable
  • Minimum of 5 years of hands-on experience in penetration testing (mobile applications {Android and iOS}, web applications, and API), red teaming, or ethical hacking, with a proven track record of identifying and exploiting vulnerabilities
  • Demonstrate a strong grasp of end-to-end SDLC, DevSecOps, and application development for web and mobile applications
  • Expertise in using various security testing tools and frameworks (e.g., Metasploit, Burp Suite, Nmap, etc.) and manual techniques to conduct thorough security assessments
  • Proficiency in programming and scripting languages (e.g., Python, Go, Shell Script) to develop custom tools and automation scripts
  • Strong understanding of network protocols, operating systems, and common security technologies (SIEM, XDR/EDR, firewalls, IDS/IPS, WAFs, etc.)
  • In-depth knowledge of cybersecurity principles, attack vectors, and defense strategies. Familiarity with threat intelligence and risk assessment methodologies, OWASP, Cloud Security best practices
  • Excellent analytical and problem-solving abilities, with a proactive approach to identifying and mitigating security risks
  • Effective verbal and written communication skills, with the ability to convey complex technical concepts to both technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Lead and conduct penetration testing and red teaming activities against our organization's networks, applications, and physical security
  • Perform comprehensive security assessments to identify vulnerabilities and potential weaknesses
  • Develop realistic attack scenarios based on current threat intelligence and industry best practices
  • Simulate sophisticated attack techniques to identify gaps in our security controls and defenses
  • Conduct in-depth vulnerability assessments and risk analyses, utilizing various security testing tools and manual techniques
  • Provide detailed reports outlining identified vulnerabilities and recommended remediation actions
  • Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and attack techniques
  • Continuously monitor emerging trends and industry developments to inform our security strategies
  • Collaborate with the security team and other stakeholders to review and improve our organization's security architecture, ensuring it aligns with industry standards and best practices
  • Assist the incident response team in handling cybersecurity incidents, performing forensic investigations, and providing expertise on the adversary's techniques and tactics
  • Fulltime
Read More
Arrow Right

L1 Support Engineer (Sophos Specialists)

The L1 Support Engineer (Sophos Specialists) will provide first-level operationa...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
Galaxy Office Automation Pvt. Ltd.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of cybersecurity operations
  • Exposure to Sophos security solutions or similar endpoint protection platforms
  • Knowledge of EDR, incident response, threat hunting, and forensics
  • Good analytical, troubleshooting, and communication skills
  • Ability to work in a structured support environment and handle escalations efficiently
  • For BTech/MTech/MCA: 3 years in EDR / Incident Response / Threat Hunting / Forensics solutions
  • For BCA/B.Sc. IT/Diploma, no specific experience minimum stated
  • CEH
  • CSA
  • CIH
Job Responsibility
Job Responsibility
  • Provide L1 support for Sophos security products and related operational issues
  • Monitor, identify, and escalate incidents related to EDR and security events
  • Assist in incident response, threat hunting, and forensic support activities
  • Perform initial troubleshooting, analysis, and documentation of reported issues
  • Coordinate with internal teams for resolution and closure of incidents
  • Maintain proper logs, updates, and case records in line with support processes
  • Fulltime
Read More
Arrow Right

Embedded Developer, Senior

As an embedded software engineer, you know how to create and maintain crucial pi...
Location
Location
United States , Annapolis Junction
Salary
Salary:
86900.00 - 198000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 14+ years of experience with computer network operations capability development and engineering services, including defense and exploitation to gain strategic advantages
  • 10+ years of experience with computer programming in C/C++, Python, Assembly, or PerlScript
  • Experience with software development, analytic development, and DevOps techniques for malware variants, advancing crypt capabilities, and emerging unknown protocols
  • Experience gathering requirements, designing and developing approaches for product security and resilience, cryptographic solutions, and anti-forensic measures
  • Experience with indigenous and vendor proprietary protocols
  • Experience using automation and virtualization to deploy, maintain, and sustain capabilities, developing and executing strategies for countering or mitigating environmental challenges, security and policy constraints, and system and architecture limitations
  • Experience with designing, developing, debugging, and testing of embedded software, and performing requirements analysis to drive requirement specifications
  • Experience packaging embedded software products for release to government customers
  • TS/SCI clearance with a polygraph
  • Bachelor’s degree
Job Responsibility
Job Responsibility
  • Support the development of systems, sites, and tools for our clients
  • Write, test, and edit code in support of the team’s overall results
  • Develop and reverse engineer software that supports hardware functionality on a wide range of devices
  • Configure solutions based on the platform being used
  • Work with other team leaders to troubleshoot and correct operational issues
  • Work with cybersecurity specialists to ensure that the software you’re creating is secure
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
  • Fulltime
Read More
Arrow Right