OUR STORY

Why Noctulux exists.

Security is not the mystery. The starting point usually is.

Web

Applications

Security

Operations

Training

Mentoring

Interim

Freelance

noctulux-capabilities.log

Why Noctulux exists

External SOC, build in-house, interim help, or invest in people and tooling? Many teams are unsure what makes sense right now. We help you see where you stand and which route fits.

What we kept seeing

External SOC, in-house build, or interim? Often nobody knows the smartest next step.

How we work

First, clarity on where you stand and which routes are realistic.

What we kept seeing

Big spends on contracts or tooling before the organisation knows what it actually needs.

How we work

Then choose what fits: external, in-house, interim, or a mix. No pressure to do everything at once.

What we kept seeing

Plenty of advice and options. Hard to pick one concrete next step.

How we work

Fixed scope and clear deliverables. You know what you get before work starts.

Noctulux delivers scoped cybersecurity services, built by a SOC architect who sat on both sides of the table. Web app security, external rating, SOC/SIEM, detection engineering, threat hunting, reporting, remediation validation. Fixed scope and fixed deliverables per engagement, with output engineers and leadership can use.

noctulux-core · expertise map

Noctulux expertise

Architectuur

Blueprint & roadmap

SIEM

Logs & correlatie

Detectie

Rules & MITRE

NX

SOC

Triage & response

Hunting

Hypotheses & queries

VM

Risico & patching

6 domeinen actiefenterprise · gereguleerd

EXPERTISE

Four core areas

Web applications, security operations, training, and interim support. Four areas with scoped services and clear deliverables.

Security operations

SOC and SIEM, detection, threat hunting, vulnerability management, and security architecture. From baseline and blueprint to rules and process improvement.

View these services

Web applications

Pentest, external rating, and periodic reporting. Concrete findings and retest after you ship fixes.

View these services

OUR SPECIALISTS

Certifications and tooling from practice

We specialise in security operations, SIEM platforms, information security, and web application security. Our specialists hold enterprise certifications and work daily in regulated environments.

39

Certifications

45+

Security tools

9

Frameworks

Tier 1–3

SOC experience

noctulux-certs · registry

alleen certificeringen

Microsoft

6 certificeringen

  • SC-200 Security Operations Analyst
  • SC-100 Cybersecurity Architect
  • SC-300 Identity & Access Administrator
  • SC-400 Information Protection Administrator
  • AZ-500 Azure Security Engineer
  • SC-900 Security Fundamentals

Splunk

7 certificeringen

  • Splunk Core Certified User
  • Splunk Certified Power User
  • Splunk Enterprise Certified Admin
  • Splunk Enterprise Security Certified Admin
  • Splunk Certified Cybersecurity Defense Analyst
  • Splunk Certified Knowledge Manager
  • Splunk Certified Data Administrator

Elastic

8 certificeringen

  • Elastic Certified Engineer
  • Elastic Certified SIEM Analyst
  • Elastic Certified Observability Engineer
  • Elastic Certified Data Analyst
  • Elastic ES|QL
  • Elastic Search Relevance Engineer
  • Kibana Data Analysis
  • Elastic Security for SOC Analysts

CompTIA

4 certificeringen

  • CompTIA SecurityX
  • CompTIA CySA+
  • CompTIA Pentest+
  • CompTIA Security+

ISC2

2 certificeringen

  • CISSP
  • SSCP

ISACA

2 certificeringen

  • CISM
  • CRISC

GIAC

8 certificeringen

  • GCIH
  • GCIA
  • GSEC
  • GNFA
  • GCFE
  • GPEN
  • GWAPT
  • GREM

Offensive Security

1 certificering

  • OSCP

PortSwigger

1 certificering

  • BSCP

platforms & tooling · per categorie

SIEM & logging

ElasticSplunkMicrosoft SentinelWazuhRapid7 InsightIDRIBM QRadarLogRhythmKibanaES|QLSplunk ITSI

Endpoint & XDR

CrowdStrikeMicrosoft DefenderMicrosoft Defender XDRSentinelOneCortex XDRTaniumCanary

Identity & cloud

Microsoft EntraMicrosoft 365AzureAWSGoogle WorkspaceOkta

Vulnerability & risk

TenableNessusRapid7 InsightVMQualysRiskReconKenna

Web & pentest

Burp SuiteOWASP ZAPNucleiSQLMapNiktoMetasploitAcunetix

Email & awareness

MimecastPhishERKnowBe4ProofpointAbnormal Security

IR, intel & network

TheHiveVirusTotalShadowserverCisco UmbrellaMISPOpenCTIZeekTopdesk

Frameworks & compliance

ISO 27001NEN 7510SOC 2NIS2DORAAVGNIST CSFMITRE ATT&CKOWASP Top 10