Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Design and develop detection rules to combat cyber threats using cutting-edge technology.
- Company: Join Anomali, a leading AI-powered security platform in Silicon Valley.
- Benefits: Enjoy competitive salary, private healthcare, and 25 days paid time off.
- Why this job: Make a real impact in cybersecurity while working with innovative technologies.
- Qualifications: Degree in Cybersecurity or related field; programming skills in Python, Java, or C.
- Other info: Hybrid role based in Belfast with excellent career growth opportunities.
The predicted salary is between 36000 - 60000 £ per year.
Company Description
Anomali is headquartered in Silicon Valley and is the leading AI-Powered Security Operations Platform that is modernizing security operations. At the center of it is an omnipresent, intelligent, and multilingual Anomali Copilot that automates key workflows and empowers your team to deliver critical threat insights to leadership in seconds. Anomali unifies ETL, SIEM, XDR, SOAR, and the world's largest repository of global intelligence into a single, cloud-native platform that improves detection, speeds investigations, and reduces costs at scale.
Position Description:
As a Security Analytics Content Engineer, you will lead the design and production of content detection logic and rules used in Anomali's various technologies. This role is responsible for supporting Anomali's content detection efforts to become a leader in the Security Analytics Market. You will also be responsible for building, deploying, and testing all SIEM detection rules and logic.
Threat Analysis and Detection:
- Analyzing various forms of digital content, such as emails, web pages, and files, to detect potential security threats like malware, phishing attacks, or harmful scripts.
- Creating documents on the threats found during the threat analysis, including what the threat is, when the threat was first noticed, where the threat originated, how to detect the threat, why to mitigate the threat, and with whom the threat is associated.
Deep Dive into TTPs:
- Techniques Identification: Identify specific techniques used in the campaign, such as spear phishing, exploitation of public-facing applications, or credential dumping.
- Tactics Correlation: Correlate these techniques with the tactics in the MITRE ATT&CK matrix, which are broad categories describing the objectives of the adversary, such as 'Initial Access', 'Execution', 'Persistence', etc.
- Procedures Detailing: Detail the specific procedures or methods used for each technique. For instance, if the technique is 'spear phishing', the procedure might involve sending emails with malicious attachments tailored to specific individuals.
- Detection Mapping: Create detections to watch the adversary's behaviour to known profiles in the MITRE ATT&CK framework.
Development of Detection Rules:
- Designing and developing detection rules and algorithms using query language operators and functions to automatically detect harmful content. This involves understanding the latest in machine learning, pattern recognition, and data analysis techniques.
Research and Keeping Up-to-date:
- Staying informed about the latest malware trends, attack vectors, and detection technologies. This involves continuous learning and sometimes participating in cybersecurity research with Anomali's Advanced Threat Research Group.
Testing Custom Detection Tools:
- Develop Custom Scripts/Tools: If applicable, test custom-developed scripts or tools designed for malware detection.
- Machine Learning Models: Evaluate the effectiveness of any machine learning models that have been trained to detect malware.
A Content Detection Engineer typically specializes in identifying and mitigating security threats. This role involves analyzing threat actors, their campaigns, and creating detection rules and algorithms to detect and prevent such attacks. Additionally, the role may create content based on approved customer requests. The role is a blend of cybersecurity knowledge and content analysis skills.
Qualifications Required Skills/Experience:
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field. Additional experience and/or relevant certifications will be considered in lieu of degree.
- Proficiency in programming languages such as Python, Java, or C.
- Foundational understanding of Threat Intelligence and detection rules for Malware and malicious campaigns.
- Ability to analyze and interpret logs and alerts from various security tools.
- Experience with machine learning and artificial intelligence, especially in content recognition and classification.
- Familiarity with data analysis and data mining techniques.
- Experience with tools and techniques for detecting malware, phishing attempts, and other malicious content.
- Knowledge of network security and protocols, including experience with firewalls, intrusion detection systems, and encryption technologies.
- 2 years of relevant experience in the cyber security space, doing work relevant to the responsibilities of this position.
- Previous experience in threat analysis, content detection or a similar field.
- Hands-on experience with machine learning algorithms and tools.
- Strong analytical and problem-solving skills.
- Attention to detail and accuracy.
- Ability to work independently and as part of a team.
- Good communication skills, as the role may involve collaborating with other teams and explaining complex concepts to non-technical stakeholders.
- Willingness to stay updated with the latest developments in technology, particularly in areas relevant to content detection.
This position is a hybrid position working onsite at our Belfast office. This position is not remote. This position is not eligible for employment visa sponsorship. The successful candidate must be authorized to work freely in Belfast.
Benefits:
- Competitive Salary Medical.
- Private Healthcare Plan.
- Dental Plan.
- Optical Plan.
- Work-Life Balance.
- Paid Public Holidays.
- Accrued Paid Time Off – 25 days.
Equal Opportunities Monitoring:
It is our policy to ensure that all eligible persons have equal opportunity for employment and advancement on the basis of their ability, qualifications and aptitude. We select those suitable for appointment solely on the basis of merit without regard to an individual's disability, race, religion, sex, age or sexual orientation. Monitoring is carried out to ensure that our equal opportunity policy is effectively implemented.
If you are interested in applying for employment with Anomali and need special assistance or accommodation to apply for a posted position, contact our Recruiting team. We are happy to discuss reasonable adjustments.
Security Content Analyst in Belfast employer: Anomali
Contact Detail:
Anomali Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Security Content Analyst in Belfast
✨Tip Number 1
Network like a pro! Reach out to current employees at Anomali on LinkedIn or other platforms. Ask them about their experiences and any tips they might have for landing the Security Content Analyst role.
✨Tip Number 2
Prepare for the interview by brushing up on your knowledge of the MITRE ATT&CK framework. Be ready to discuss how you would apply it in real-world scenarios, especially in threat detection and analysis.
✨Tip Number 3
Show off your skills! If you have any personal projects or contributions to open-source tools related to cybersecurity, be sure to mention them during your interview. It’s a great way to demonstrate your passion and expertise.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining the Anomali team.
We think you need these skills to ace Security Content Analyst in Belfast
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Security Content Analyst role. Highlight your relevant experience in cybersecurity, programming skills, and any specific projects that showcase your ability to analyse threats and develop detection rules.
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about cybersecurity and how your skills align with Anomali's mission. Don't forget to mention any experience with machine learning or threat analysis!
Showcase Your Technical Skills: Be sure to list your proficiency in programming languages like Python or Java, as well as any experience with security tools. This is crucial for the role, so make it easy for us to see your technical prowess!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it shows you’re keen on joining the Anomali team!
How to prepare for a job interview at Anomali
✨Know Your Stuff
Make sure you brush up on your knowledge of threat intelligence and detection rules. Familiarise yourself with the MITRE ATT&CK framework and be ready to discuss specific techniques and tactics. This will show that you're not just a candidate, but someone who understands the landscape of cybersecurity.
✨Show Off Your Skills
Be prepared to demonstrate your programming skills, especially in Python, Java, or C. You might be asked to solve a problem on the spot, so practice coding challenges related to malware detection or content analysis. This is your chance to shine!
✨Stay Current
Cybersecurity is always evolving, so make sure you’re up-to-date with the latest trends and technologies. Mention any recent developments in malware detection or machine learning that you've been following. This shows your passion for the field and your commitment to continuous learning.
✨Communicate Clearly
Since you'll need to explain complex concepts to non-technical stakeholders, practice articulating your thoughts clearly and concisely. Use examples from your past experiences to illustrate your points. Good communication can set you apart from other candidates!
