Cookies
To assist you better and on a more personal level, we utilize cookies. This is to ensure you can navigate our website seamlessly. Additionally, it allows us to understand how visitors interact with our site, enabling us to tailor the experience for even better user experience. Naturally, we're keen on understanding the outcomes of our marketing efforts and ensuring the advertisements you encounter from us match with your interests. However, we do require your consent for this.
About the position
Detection Engineering (Core Focus) Design and develop custom detection rules from scratch using endpoint, network, and cloud telemetry Translate MITRE ATT&CK techniques into actionable detection logic Build detections based on: Process execution patterns Command-line analysis Parent-child relationships DLL loads and memory behaviors Network anomalies
Threat Behavior Modeling Analyze attacker tactics, techniques, and procedures (TTPs) Convert threat intelligence into practical detection use cases Continuously refine detections to reduce false positives
Detection Implementation Implement detection logic across platforms such as: Microsoft Defender for Endpoint CrowdStrike Falcon SentinelOne SIEM tools (e.g., Microsoft Sentinel, Splunk) Work with: KQL (Kusto Query Language) Sigma rules EDR custom detection frameworks
Threat Hunting & Validation Proactively hunt for threats using hypothesis-driven approaches Validate detection rules through: Simulated attack scenarios Red team / purple team exercises
Continuous Improvement Tune detection rules for: Accuracy Performance Scalability Eliminate alert fatigue by improving signal-to-noise ratio
Collaboration Work closely with: SOC Analysts (for feedback loop) Incident Response teams Threat Intelligence teams Provide guidance on detection coverage gaps
What we offer
- Salary
Attractive salary based on your knowledge and experience.
- Career Development
Quickly gain diverse work experience with various clients.
- Flexible Job Security
Engage in varied assignments with the stability of a (permanent) contract.
- Salary
Attractive salary based on your knowledge and experience.
- Career Development
Quickly gain diverse work experience with various clients.
- Flexible Job Security
Engage in varied assignments with the stability of a (permanent) contract.
Job Requirements
Must-Have Skills
Technical Expertise
Strong experience in EDR/XDR platforms:
Microsoft Defender for Endpoint
CrowdStrike
SentinelOne
Hands-on experience writing:
Custom detection rules (non-negotiable)
Log queries using KQL / SPL
Deep Understanding of:
Endpoint telemetry:
Process creation logs
Command-line arguments
File activity
Registry changes
Attack techniques:
Lateral movement
Privilege escalation
Persistence mechanisms
Defense evasion
Frameworks & Methodologies
Strong knowledge of MITRE ATT&CK framework
Experience mapping detections to ATT&CK techniques
Scripting / Automation
Basic to intermediate scripting in:
Python / PowerShell
Company Description
Promotional text
Working at Maandag®
For more than 35 years, Maandag® has been at the forefront of empowering people and organisations. We not only help professionals get jobs, but also connect them with a future that matches their values, desires and ambitions. Because when people are truly in the right place, they can develop themselves, fulfil their dreams and go to work with fresh energy every day. The energy and power released in the process is a catalyst for growth for companies. We started in the Netherlands, but now we also help professionals and organisations in Belgium, Poland, Dubai and Sweden. Our extensive knowledge of different markets, coupled with our wide network, enables us to make perfect matches quickly.
Apply
A Maandag® recruiter will assess your application as soon as possible to determine whether you are suitable for an open position.
Contact Person
Spoorthi Patil
Recruiter General
The application process
Wondering what your process will be? See in our steps what you will go through to work at Maandag® in the future.
You apply
A Talent Manager from Maandag® will review your application to determine your suitability for the position and the company.
Answers to important questions
A dose of fresh energy, delivered straight to your inbox.
Subscribe to our newsletter now to stay updated with industry insights, free training, and the latest job openings.