Security Operations Architect
28-05-2026
Brussel
We are seeking an experienced Security Operations Architect to design and enhance an ongoing security operations transformation. This role focuses on assessing the current SIEM and SOC operating model, identifying improvements, and driving transformation from an architectural and project management perspective.
The consultant will work closely with internal security, IT, and business stakeholders to strengthen the organization’s detection, response, and overall security posture.
Tasks can include:
- Review and document the current SIEM architecture, SOC model, and supporting tooling
- Analyse existing security operations processes, including monitoring, detection, incident response, and escalation workflows
- Identify gaps, inefficiencies, and improvement opportunities across technology, processes, and organization
- Define a target future SOC operating model and roadmap aligned with organizational needs
- Provide recommendations on SIEM optimization, use cases, log onboarding strategy, and detection engineering
- Develop and maintain project plans, timelines, and deliverables
- Coordinate across stakeholders (security, IT, vendors, management)
Required skills:
- Language EN and NL or FR
- Strong communication skills
- Proactive management
- Proven experience with Security Operations (SOC) and SIEM environments
- Strong understanding of SIEM platforms (e.g., Splunk, Sentinel, QRadar, Elastic, etc.)
- Experience with SOC design, transformation, or maturity improvement initiatives
- Strong project management skills
- Knowledge of automation and SOAR platforms
- Any insights into agentic SOC is a bonus
