Shell is hiring a Senior Detect & Respond Analyst

The Senior Detect & Respond Analyst will play a critical role in identifying intrusions, uncovering vulnerabilities, and responding to cyber incidents across IT and OT environments. As part of Shell's global Detect & Respond team within the Information Technology (IT) job family group, this role strengthens cyber defense through proactive threat detection, incident response, and continuous improvement of security controls.

What You'll Do

• Execute end‑to‑end Detect & Incident Response processes — from initial detection through containment, eradication, and post‑incident review
• Identify, triage, and respond to real‑time cyber intrusions across IT and OT environments
• Lead detailed investigations to minimize business impact and uncover root causes
• Collaborate with security engineering, automation, threat intelligence, and other cyber capabilities to continuously enhance detection and response
• Analyze and correlate security events using industry‑leading SIEM, EDR, and network monitoring technologies (e.g., SIEM platforms, endpoint protection, IDS/IPS, network telemetry)
• Monitor the performance and effectiveness of deployed security controls
• Report vulnerabilities and drive corrective actions with stakeholders
• Conduct forensic analysis, threat hunting, and advanced investigations
• Develop and refine playbooks, standard operating procedures, and detection logic
• Provide clear communication of incident impact and remediation progress to technical and executive stakeholders
• Support wargame exercises, tabletop simulations, and continuous improvement initiatives
• Participate in a rotating on‑call schedule to support 24/7 operations during critical incidents

What We're Looking For

• Extensive experience in Cyber Detect & Respond, SOC operations, cybersecurity investigations, or network operations
• Strong analytical and problem‑solving skills, with the ability to examine complex data sets and identify patterns, anomalies, and attack indicators
• Hands‑on experience with SIEM, EDR, IDS/IPS, firewalls, proxies, and network monitoring technologies
• Understanding of the current threat landscape, attacker TTPs, malware behavior, and incident response practices
• Familiarity with cloud platforms (AWS, Azure), scripting (PowerShell, Python, Bash), and system internals (Windows/Linux)
• Ability to work under pressure, manage multiple investigations, and coordinate effectively across teams
• Willingness to support after‑hours and on‑call responsibilities during high‑priority incidents

Nice to Have

• A bachelor’s degree (Master’s preferred) in Computer Science, Cybersecurity, or a related field
• Certifications such as SANS, GCIH, GCIA, GCFA are a plus
• Strong preference for OT SOC experience — including monitoring and responding to threats in industrial control systems (ICS), SCADA, and critical infrastructure environments
• A solid background in one or more technical security domains, such as: Ethical hacking / penetration testing, Red teaming / adversary simulation, Digital forensics, Threat hunting, Network security engineering

Technical Stack

• SIEM platforms
• endpoint protection
• IDS/IPS
• network telemetry
• EDR
• firewalls
• proxies
• network monitoring technologies
• AWS
• Azure
• PowerShell
• Python
• Bash
• Windows
• Linux

Team & Environment

Global Detect & Respond team within the Information Technology (IT) job family group

Benefits & Compensation

• Work with talented, committed people on one of the most important challenges facing our planet
• Opportunity to develop the skills you need to grow in an environment where we value honesty, integrity, and respect for one another
• Ability to balance your priorities as you become the best version of yourself
• Progress as a person as we work on the energy transition together
• Continuously grow the transferable skills you need to get ahead
• Work at the forefront of technology, trends, and practices
• Collaborate with experienced colleagues with unique expertise
• Achieve your balance in a value-led culture that encourages you to be the best version of yourself
• Benefit from flexible working hours, and the possibility of remote/mobile working
• Perform at your best with a competitive starting salary and annual performance related salary increase – our pay and benefits packages are considered to be among the best in the world
• Take advantage of paid parental leave, including for non-birthing parents
• Join an organisation working to become one of the most diverse and inclusive in the world
• Grow as you progress through diverse career opportunities in national and international teams
• Gain access to a wide range of training and development programmes

Work Mode

Hybrid work model with presence in the Netherlands. Includes flexible working hours, and the possibility of remote/mobile working.

Shell is an Equal Opportunity Employer. We strongly encourage applicants of all genders, ages, ethnicities, cultures, abilities, sexual orientation, and life experiences to apply.