Junior Incident Response Engineer

It all starts with the mission: NVISO is here to protect European society from potentially devastating cyber attacks! This means we offer cyber security services to private and governmental organizations to help them better prepare for, prevent, detect and respond to cyber security incidents.

All of this is built on four fundamental values that define who we are: We are Proud, We Break Barriers, We Care and No BS!

As a Junior Incident Response Engineer, you will contribute to both incident response and security operations engineering. This role is designed for someone with 1–2 years of relevant experience who is willing to commute to province of Luxembourg three times per week.

Typical tasks include, but are not limited to:

• Supporting the investigation and triage of security incidents across endpoint, network, identity, and cloud environments;
• Assisting with containment, eradication, and recovery activities by gathering evidence, validating findings, and following up on technical actions;
• Contributing to SOC and incident response improvements through detection tuning, log onboarding support, and the development of playbooks and procedures;
• Helping automate recurring investigation and response tasks to improve efficiency, consistency, and scalability;
• Contributing to threat hunting, technical readiness activities, and lessons learned exercises.

• 1–2 years of experience in incident response, SOC operations, detection engineering, or a related blue team role;
• A good understanding of incident response principles, common attacker techniques, and the use of system, network, and cloud telemetry during investigations;
• Foundational knowledge of SOC engineering concepts such as log onboarding, use case development, alert triage, and SIEM-based analysis;
• Practical experience with one or more SIEM or security monitoring platforms, combined with a clear interest in engineering and automation;
• General knowledge of forensic and investigative concepts such as artifact analysis, timeline reconstruction, and evidence-driven analysis;
• Strong analytical skills, a structured way of working, and clear communication in English.

At NVISO, we care. We are committed to offering you a highly competitive remuneration package including financial and non-financial components:

• A training budget of 10.000€ and 10 days every 2 years
• Company car and Belgian charging card
• Working and learning from the best people in the European cyber security industry. We have multiple SANS Instructors working at NVISO, our staff has presented at popular hacking conferences (BlackHat, BruCON, OWASP, etc) and all of our technical staff can acquire deep technical security certifications (GSE, GXPN, GREM, GCFA, OSCP, etc)
• An entrepreneurial and agile working environment, where you will be challenged, stimulated and supported in driving new initiatives (either through internal innovation or by improving our service offering), without losing sight of having fun!
• Regular team-building and fun events throughout the year;
• Our commitment to coach and counsel you and help you grow; each employee receives a personal coach within the team, whose role is to ensure your well-being and helps you grow in your career!
• Flexible working hours, working from home and even the possibility to work from abroad;
• Flex Income Plan
• 32 paid leave days

IF YOU’RE INTERESTED, PLEASE SEND US YOUR APPLICATION!

WE’RE LOOKING FORWARD TO MEETING YOU!

Disclaimer on the Use of AI Tools in the Application Process

Please be aware that the creation and submission of application documents (e.g. CV, cover letter, case studies, etc.) using AI-powered tools is only permitted to a limited extent.

Our expectations:

Application documents must authentically reflect your own qualifications, personality, and motivation.

The use of AI for supportive purposes (e.g. spell-checking, improving wording) is acceptable.

Fully generated application documents created by AI without personal adaptation or review are not permitted.

Under no circumstances may NVISO information, data, or documents be uploaded to or processed by external AI tools.

We reserve the right to exclude applications from the selection and interview process that are clearly created primarily or exclusively by AI and show no recognizable personal input.

The purpose of this policy is to ensure a fair and transparent recruitment process and to obtain an authentic impression of our applicants.