Senior Detection Engineer

Join us in protecting the Netherlands' critical infrastructure from cyber attacks. Work within the Netherlands' leading Security Operations Centers (SOCs). We leverage the latest technologies to structurally strengthen the cyber resilience of vital organizations. At Deloitte.

Role: Senior Detection Engineer

Benefits

• You will receive a profit-sharing bonus, on top of your fixed salary.
• Continue professional growth by joining our development program.
• A work-from-home office setup allowance to support an ergonomically designed workstation and an internet allowance.

What's in it for you?

• In addition to a competitive salary, a share in our profits
• Great growth opportunities, depending on your ambitions and performance
• A development program that helps you keep growing
• Flexible working hours and the opportunity to work from home
• 26 days of paid holiday annually, and the opportunity to purchase 15 additional holiday days annually
• The opportunity to take a month of unpaid leave once annually
• The possibility to go on sabbatical for at least 2 months
• A good mobility scheme: choice between a company car with a fuel pass for Europe or the Mobility+ option or a gross cash option with which you arrange all your own transport or a public transport annual subscription
• An iPhone, which is also for personal use
• A laptop with a 4G connection
• A good pension scheme
• An opportunity to take part in our collective health insurance scheme
• An opportunity to benefit from tax-efficient facilities, such as company fitness and a bicycle scheme

Be the true you

• 3–6 years of hands-on experience in detection engineering, threat hunting, or incident response.
• At least three years of experience with at least one of: Elastic (SIEM/EDR), Suricata, Zeek.
• Demonstrable experience writing, tuning and validating detection logic in at least two of: Sigma, YARA‑L, ESQL.
• Strong understanding of detection deployment across the Detection Engineering Spectrum.
• Experience with telemetry sources and threat modelling.
• Comfortable working in a fast‑paced environment where threat‑driven detection and rapid iteration are the norm.
• Strong familiarity with MITRE ATT&CK and detection mapping of adversarial techniques.

What impact will you make?

As a Senior Detection Engineer you develop and implement advanced detection rules and monitoring solutions to quickly and effectively identify cyber threats. You build monitoring capabilities for network traffic, security logs, EDR/NDR data and OT environments. You also translate threat intelligence and Red Team reports into innovative detection options and coach your colleagues to promote knowledge sharing and stimulate innovation.

Do you want to play a key role in protecting the Netherlands? Join us in our cutting‑edge, intelligence‑driven SOCs that are leading the way in automation and innovation. Your work will have a direct impact on the digital security of vital organisations.

For this position, candidates must be an EU resident and fluent in Dutch. We do not offer relocation packages for this position.

How do you do this?

• Own the delivery of high‑quality detection content.
• Guide the Detection Engineering team on prioritisation, coverage and detection choke‑points.
• Partner with CTI and Red Teams and guide the process of converting regular assessments into refined detection strategies.
• Play a key role in shaping a comprehensive threat detection strategy aligned with business objectives and industry best practice.
• Mentor and support junior to medior detection engineers.
• Contribute to threat modelling efforts to identify high‑value detection opportunities and coverage gaps.
• Analyse telemetry sources (e.g. Windows Event Logs, Sysmon, cloud logs, network traffic) to identify detection use cases and ensure telemetry readiness.