Cybersecurity Specialist - Threat Content Developer

About the Role

We are seeking a skilled Threat Content Developer to join our team. This role offers an opportunity to develop and enhance our threat detection capabilities across Managed Detection & Response (MDR) service lines.

The successful candidate will track adversary activity across various industries, ensuring our managed products are positioned to detect the latest tactics, techniques, and procedures employed by attackers.

Working closely with Incident Response, Cyber Threat Intelligence, and Cyber Security Operations Centre teams, the successful applicant will translate intelligence into detection capabilities guiding actionable investigations of real-time threats.

You will bring your knowledge and expertise in security operations, threat detection, and security platforms, as well as threat intelligence review to technically assess and prioritize evolving threats.

Considering our existing use case catalogue, you will help identify and close gaps in coverage, continually improving detective capabilities with proactive and reactive additions to our overall threat content roadmap.

We seek a passionate individual who spends endless hours researching and reading about the latest hacks or vulnerabilities exploits happening in the world.

Key Responsibilities :

1. Continual assessment of our detection portfolio, considering strengths and weaknesses and translating them into roadmap items and priorities.
2. Ongoing analysis of various threat intelligence forms, tracking adversary activity in the context of adversary groups, campaigns, and software.
3. Tracking emerging threats, such as 0-day exploits published for popular software used across our customer base.
4. Continuous deployment of detection analytics (predominantly to SIEM), designed to detect any threats or risks identified during threat intelligence reviews.
5. Engage with colleagues to identify indicators which may precede successful attacks, operationalizing those indicators into new detections.
6. Contribute to the development of new tools used within the Threat Content Development team, typically leveraging automation to minimize delivery times and maximize intelligence integrations.

Qualifications / Qualities :

• 3+ years hands-on technical experience within an IT security related position, such as Detection Engineer, DevSecOps Engineer, Network Security Engineer, Cyber Security Engineer, Information Security Engineer, etc.
• Demonstrable experience implementing threat detection capabilities in security tooling such as SIEM, EDR, XDR, or SOAR.
• Deep understanding of security frameworks such as Mitre ATT&CK, OWASP, NIST, and / or CIS.
• Strong, low-level understanding of networking principles, operating systems, and software design practices.
• Familiar with commonly adopted cloud technologies across different vendors (e.g., Azure, AWS, GCP).
• Genuinely passionate about security, with a curious and analytical approach to problem solving.

Benefits :

This role offers opportunities for professional growth and development in a dynamic and innovative environment. You will work with a talented team of experts, contributing to the development of cutting-edge threat detection capabilities.

We offer a competitive compensation package, including benefits and perks that reflect our commitment to supporting the well-being of our employees.

Others :

If you are a motivated and detail-oriented individual with a passion for security, we encourage you to apply for this exciting opportunity.

Please note that only shortlisted candidates will be contacted for further discussion.