Cyber Security Expert – Incident Response (m/f/x)

About Eye Security Eye Security is providing cybersecurity with embedded cyber insurance solutions for organizations in Europe. Headquartered in the Netherlands, we are already over 170 FTEs and continue to grow internationally. We combine cutting-edge technology with hands-on expertise to detect, respond to, and recover from cyber threats in real time. Our team brings together talent from intelligence, military, tech, and consulting backgrounds — all united by a shared mission: to make enterprise-grade cybersecurity accessible to every business, not just the big players. At Eye, you’ll work on projects with an international footprint, solving real-world challenges and helping to build a safer digital future for our clients. About This Role As part of our expansion in the Benelux and DACH regions, we are seeking a (Senior) Cyber Security Expert (m/f/x) to perform Incident Response for clients facing (potential) cyber incidents. Additionally, you will collaborate with the Managed Detection and Response (MDR) team, ensuring that our clients stay safe. The MDR & IR team supports our customers in the Security Operations Center (SOC) around the clock and is ready to provide IR services when needed. Our multidisciplinary IR experts (m/f/x) support our clients with (potential) cybercrime incidents, such as business email compromise, ransomware attacks, and espionage.

What You Will Do

• Incident Response: Respond to cyber incidents remotely (and occasionally on-site, if necessary). Communicate calmly and clearly with clients, guiding them through every step of the response process.
• Domain Expertise: Use your knowledge of operating systems (Windows, Linux, Mac), cloud infrastructures (Microsoft 365, Azure, AWS, Google Cloud), and network security to analyze and mitigate threats.
• Collaboration: Support MDR workflows, triage security alerts as part of a 24/7 on-call rotation (approx. once per week) and engage with cross-regional teams to maintain quality as we scale.
• Continuous Improvement: Develop and refine internal playbooks, processes, and tooling. Contribute to initiatives like research projects, threat intelligence, and automation tools.
• Leadership: Coordinate with internal and external stakeholders, such as colleagues, lawyers, data recovery specialists, and law enforcement, to manage incidents effectively.

What You Will Need

• Track Record in Cybersecurity: Proven background in Incident Response (IR), Digital Forensics and Incident Response (DFIR), or threat intelligence. Experience in conducting forensic investigations and managing IR cases.
• Hands-on experience with cybersecurity tools like Endpoint Detection and Response (EDR) products (e.g., CrowdStrike Falcon, SentinelOne, Windows Defender for Endpoint). Proficiency in programming/scripting languages to automate response tasks or analyze evidence is a plus.
• Excellent communication skills, especially when guiding clients through high-pressure situations.
• Analytical Mindset: A natural curiosity to explore root causes and improve processes, alongside the ability to explain complex technical concepts to stakeholders clearly.
• Team-First Attitude: Comfort working in diverse and neurodivergent environments with humility and collaboration, willing to take on foundational work, including SOC alert triage and documentation.
• Language Skills: Fluency in English and either German or Dutch.
• Flexibility: Availability to participate in 24/7 on-call schedules.

What We Offer

• Meaningful Mission: protect organizations across Europe from real-world cyber threats
• Collaborative Culture: work with top-tier professionals from national CERTs, intelligence agencies, and leading tech backgrounds
• Autonomy and Ownership: Shape internal processes and tools while enjoying ownership of your projects.
• Flexibility: A remote-friendly culture with quarterly meetups, annual company retreats (in Spain, Portugal, Italy…) and Thursday socials.
• Generous Time Off: Including wellbeing and volunteering days — because great work starts with time to rest and recharge.

Are you up for it? We look forward to receiving your application. Apply tot his job Apply To this Job