Role & responsibilities

  • Research and definition of detection use cases based on the MITRE ATT&CK framework
  • Security incident handling as second level of engineering and analysis
  • Threat hunting using logs and current configurations in order to achieve:
    • A better threat detection
    • A quicker handling of the detected threats
    • An optimized SIEM usage
    • A decrease of the global vulnerability of the systems
  • Participation in red team vs Blue team exercises

Your profile

  • University degree (minimum Bac +3) in computer sciences. Certifications related to the required technical skills are an asset.
  • At least two years of Elasticsearch installation or administration
  • Excellent skills in French and English, written and spoken. Knowledge of Luxembourgish or German is an asset
  • Excellent knowledge of Elasticsearch stack
  • Mastership of Python3 and Ansible
  • Good general knowledge about cyber-attacks, post exploitation technics, and vulnerabilities commonly exploited in the Microsoft environments
  • Knowledge of OWASP and web intrusion test methodologies
  • Good skills in Linux environments
  • Knowledge of docker and associated orchestration tools
  • A practical usage of the framework MITRE ATT&CK is an advantage
  • A previous experience in a pentest team is an advantage
  • A previous experience in a CSIRT or SOC team is an advantage
  • A previous experience with a network/security integrator is an advantage
  • Pragmatic approach and solution oriented
  • Open minded and structured
  • Good writing skills
  • Organized and excellent collaboration and communication skills
  • Dynamic, proactive and motivated
  • Able to work both autonomous and within a team

The successful candidate (m/f) will be hired as public employee (“employé de l’Etat”) under a permanent contract. If the candidate meets the required conditions, s/he will be asked to apply for admission to the status of civil servant (“fonctionnaire de l’Etat”).

Prior to the conclusion of the contract, the candidate must submit an extract from the criminal record (bulletin n°3), dated less than 2 months, in order to prove their conduct and integrity.

Apply now


    * Required fields

    Next steps

    1. Our HR team will perform a pre-screening of all candidate files before transmitting applications to the respective hiring managers.
    2. Chosen candidates will be contacted for HR & business interviews, followed by a written test. At this point, we will also require a recent extract of your criminal record. Depending on the number of entries, the gravity of the offence(s) and the date of the conviction(s), a candidate may be excluded from the recruitment process.
    3. Following the interview process, the applications of selected candidates will be submitted to the head of department and/or a member from our board of directors for a potential additional interview.
    4. The successful candidate will be hired as public employee (“employé de l’État”) and, if s/he meets the required conditions, s/he will be asked to apply for admission to the status of civil servant (“fonctionnaire de l’Etat”).

    Please have a look at our FAQ to find additional guidance on our recruitment process.


    For diplomas obtained outside of Luxembourg, Belgium or The Netherlands, we additionally require proof of their equivalence with national standards. While you may send your application without it, we encourage you to request this straight away in order to avoid delays later on in our recruitment process. Additional details can be obtained from the Ministère de l’Enseignement Supérieur et de la Recherche for university level degrees or on guichet.public.lu for A-level (BAC) diplomas or other qualifications.

    Please have a look at our FAQ to find additional guidance on our application and recruitment process.