Demo
Careers
SIEM Content Developer
Talion are looking for a talented individual to join our content detection Team in our Kuala Lumpur Engineering Centre as a senior SIEM Content developer. The successful applicant should be expected to develop detection capabilities based on Security Use Cases and to enhance our current capability improving the content and the use cases in place.
Location: 
Kuala Lumpur
Department: 
Date Posted: 
3rd August 2021
Deadline: 
30th September 2021

Reporting line

Head of Detection

Who is Talion?

At Talion, we’re changing the way organisations interact with their Managed Security Service Provider.  Born out of BAE Systems, our service is built on first-hand knowledge of military engineering and defence-grade security, together with an in-depth understanding of the threat landscape facing the commercial world today.

When it comes to cyber security, we believe every organisation deserves full visibility and complete control over how threats are monitored, how decisions are made, and how their business is protected. That’s why we prioritise transparency and collaboration across our service lines, implementing security programs that give businesses the control and freedom to pursue ambitions and realise goals, safe in the knowledge that we’ve got their back, 24 hours a day, 7 days a week.

Role Description

Talion are looking for a talented individual to join our content detection Team in our Kuala Lumpur Engineering Centre as a senior SIEM Content developer. The successful applicant should be expected to develop detection capabilities based on Security Use Cases and to enhance our current capability improving the content and the use cases in place.

You will have to research about security and to generate use cases understanding them and being capable to translate them into actionable alerts that will protect our customer base.

Critical thinking, creativity, and problem-solving are essential for the role as you will be working in projects to increase the protection of our customers developing new services. You must be passionate about technology and able to learn the ropes of new security solutions rapidly.

Specific Accountabilities and Responsibilities

  • Continuously improving our security detection content by monitoring the threat landscape for new techniques which can be developed
  • Develop SIEM detection capabilities based on the raised use cases transforming them on actionable alerts that can be triaged.
  • Raise improvements to our current SIEM detection so those are more effective.
  • Work with different SIEMS being capable to adapt to the different capabilities of each one.
  • Understand the MITRE ATT&CK model to map the alerts to specific techniques and tactics
  • Train people in the company for them to understand our SIEM detection capability.
  • Share knowledge about SIEM with other team members

Qualifications and Requirements

  • A degree or industry-recognised certification in intelligence or cybersecurity, or equivalent experience working in Cyber Security
  • Experience developing security detection on SPLUNK or DEVO. Experience with other SIEM’s is a plus.
  • Proven Critical thinking, creativity, and problem-solving
  • Able to collect, analyse, and interpret qualitative and quantitative data from various sources including extracting indicators and exercising critical thinking in assessing the threat
  • Comfortable speaking technically with analysts
  • Strong interpersonal skills
  • Able to manage competing priorities and work efficiently under pressure
  • Inquisitive, high energy, and eager to win
 
Apply for this position


    Other vacancies