Permanent contract | Belval
Are you passionate about research? So are we! Come and join us
The Luxembourg Institute of Science and Technology (LIST) is a leading Research and Technology Organisation (RTO) that drives innovation for the economy and society in Luxembourg and beyond. With cutting-edge expertise in Natural, Built, Industrial environments, Space, AI, Security and defence technologies. LIST bridges scientific excellence and applied research to design solutions that address real-world challenges and create positive impact.
Do you want to know more about LIST? Check our website: https://www.list.lu/
How will you contribute?
The IT Operations Security Analyst is responsible for monitoring, analysing, and responding to security events across the organisation’s IT infrastructure. This role plays a key part in maintaining the organisation’s security posture by continuously monitoring security logs, investigating alerts, and handling first-level (L1) security incidents.
Working within the Security Operations function, the IT Operations Security Analyst ensures that potential threats and anomalies are identified and addressed in a timely manner. The role requires strong analytical skills, attention to detail, and the ability to work with multiple monitoring tools and security platforms. The position collaborates closely with infrastructure, network, application, and information security teams to ensure effective incident response and continuous improvement of security monitoring capabilities.
You will be mainly responsible for:
Monitor security events and logs from multiple systems including SIEM platforms, firewalls, servers, endpoint protection systems, cloud platforms, and network devices
Analyse alerts and security events to identify potential threats, suspicious activities, or policy violations.
Engage with end users to gather additional information and support incident analysis and remediation.
Perform first-level (L1) investigation and triage of security incidents & requests, ensuring appropriate escalation, approval or communication when necessary
Respond to security alerts and incidents according to established procedures and incident response playbooks
Correlate events across different monitoring tools to identify potential attack patterns or anomalies
Support the detection and containment of security threats, including malware infections, unauthorized access attempts, and abnormal network behaviour
Escalate complex or high-risk incidents to L2/L3 security teams or relevant technical teams while providing detailed investigation context
Maintain accurate incident records, documentation, and investigation notes within the organisation’s security management systems
Provide feedback to support the improvement of detection rules, monitoring dashboards, and alert thresholds, thereby enhancing threat detection capabilities.
Contribute to vulnerability monitoring activities by reviewing vulnerability scanning results and assisting with remediation follow-ups
Support the review and analysis of system, application, and network logs for security investigations.
Collaborate with IT infrastructure, network, and application teams to address identified security issues and reduce risk exposure
Participate in the continuous improvement of security monitoring processes, procedures, and documentation
Stay informed about emerging cyber threats, vulnerabilities, and attack techniques relevant to the organisation’s environment
Is Your profile described below? Are you our future colleague? Apply now!
Education
Bachelor’s degree in computer science, Information Technology, or a related field
Experience and skills
Initial experience (typically 2–5 years) in IT security operations, security monitoring, SOC environments, or IT infrastructure support with a strong security focus
Experience working with Security Information and Event Management (SIEM) tools, Splunk is an asset
Familiarity with log analysis from systems such as firewalls, endpoint security tools, operating systems, network devices, and cloud services
Understanding of common cybersecurity threats, attack techniques, and indicators of compromise (IOCs)
Basic knowledge of incident response processes and security operations workflows
Experience with EDR/XDR platforms such as SentinelOne, Netskope, and Microsoft Defender is considered an advantage. Familiarity with vulnerability scanning tools and security monitoring solutions such as Tenable is considered an asset.
Knowledge of networking fundamentals (TCP/IP, DNS, VPN, routing) and system administration concepts
Basic scripting or automation skills (e.g., Python, PowerShell, or Bash) are considered a plus
Understanding of security frameworks such as NIST, CIS Controls, or ISO 27001 is beneficial
Strong analytical and investigative mindset with attention to detail
Ability to quickly assess alerts and determine potential security risks
Strong problem-solving skills and ability to work under pressure during security incidents
Good interpersonal and communication skills
Good documentation and reporting abilities
Language skills
Fluent level (both oral and written) in English and French (an asset)
Your LIST benefits
An organization with a passion for impact and strong RDI partnerships in Luxembourg and Europe that works on responsible and independent research projects
Sustainable by design, empowering our belief that we play an essential role in paving the way to a green society
Innovative infrastructures and exceptional labs occupying more than 5,000 square metres, including innovations in all that we do
An environment encouraging curiosity, innovation and entrepreneurship in all areas
Personalized learning programme to foster our staff’s soft and technical skills
Multicultural and international work environment with more than 50 nationalities represented in our workforce
Diverse and inclusive work environment empowering our people to fulfill their personal and professional ambitions
Gender-friendly environment with multiple actions to attract, develop and retain women in science
32 days’ paid annual leave, 11 public holidays, 13-month salary, statutory health insurance
Flexible working hours, home working policy and access to lunch vouchers
Apply online
Your application must include:
A motivation letter oriented towards the position and detailing your experience
Contact details of 2 references
Please apply ONLINE formally through the HR system. Applications by email will not be considered.
Application procedure and conditions
We kindly request applicants to provide their nationality for statistical purposes only, as part of our commitment to promoting diversity and ensuring equal opportunities in our workforce. This information will be kept confidential and will not be used for any discriminatory purposes.
LIST is dedicated to maintaining an inclusive work environment and is an equal opportunity employer. We are committed to attracting, hiring, and retaining a diverse workforce. All applicants will be considered for employment without discrimination based on national origin, race, colour, gender, sexual orientation, gender identity, marital status, religion, age, or disability.
Applications will be continuously reviewed until the position is filled. An assessment committee will thoroughly evaluate applications, adhering to guidelines designed to ensure equal opportunities. The primary criteria for selection will be the alignment of the applicant's existing skills and expertise with the requirements mentioned above.