Associate Detection Engineer

Triskele Labs are one of the leading providers of cybersecurity services in Australia. We assist clients to reduce their risk of a cyber compromise through the delivery of risk-considered controls. 

Triskele Labs are one of the last remaining boutiques in Australia. We are currently the largest CREST Registered Penetration Testing company in Melbourne and one of the only boutiques to run a 24x7x365 Security Operations Team completely onshore. We have a goal of growing through build and acquisition, not selling out and becoming another one of the numbers.

The Associate Detection Engineer is an entry-level role within the Detection Engineering & Threat Hunting (DE&TH) Team. The role focuses on developing, implementing, and tuning detection rules to enhance threat detection capabilities and support the SOC team. Under the guidance of senior Detection Engineers, the Associate Detection Engineer will work closely with the SOC team to improve the effectiveness of security monitoring and incident response.

Requirements

Detection Rule Development & Management

• Creation & Optimization: Assist in developing and optimizing detection rules for SIEM platforms and security tools, collaborating with senior engineers to ensure accurate threat detection and minimize false positives.
• Testing & Deployment: Conduct testing of new detection rules and assist with their deployment across client environments.
• Maintenance & Tuning: Monitor and tune existing detection rules based on performance, evolving threats, and operational feedback to reduce false positives and negatives.

Collaboration with the SOC Team

• Incident Support: Work closely with SOC analysts to identify detection gaps and provide insights during security incident investigations.
• Knowledge Sharing: Document and share detection findings to enhance the overall security posture of the SOC team.

Tool & Technology Management

• SIEM Management: Learn to configure and manage SIEM platforms, including integrating new data sources.
• Automation & Scripting: Develop basic automation scripts (e.g., Python, PowerShell) to streamline detection processes and improve efficiency.

Process Improvement & Compliance

• Process Improvement: Identify and suggest enhancements to detection processes, collaborating with the team to implement best practices.
• Regulatory Compliance: Ensure detection activities adhere to internal policies and industry standards.

Training & Development

• Continuous Learning: Participate in ongoing training and certifications to enhance your technical skills and career progression.
• Mentorship: Work closely with senior engineers for mentorship, seeking feedback to improve your performance and grow within the role.

Benefits

Team culture is everything to Triskele Labs and it is the reason we exist.
We provide our team a great range of additional benefits such as:

• Additional days of leave for 'Birthday Leave' and 'Doona Day'
• Access to a professional external Employee Assistance Program (EAP) for all team members and training budget.
• Social functions organised by our People & Culture Team

We are a forward-thinking company and always looking for ways to boost our team culture to ensure we are a destination employer. We continually undertake surveys to seek feedback from our team on ways we can improve our work environment and team member experience at Triskele Labs.