Threat Detection Engineer

Keywords: cybersecurity, threat detection, incident response, security operations, automation, cloud computing, forensics, SIEM, EDR, collaborative environment This is an exceptional opportunity for you to join a globally recognised reinsurance organisation as a Threat Detection Engineer, based in Kuala Lumpur. As part of a purpose-driven company renowned for its commitment to innovation and collaboration, you will play a pivotal role in safeguarding the business against cyber threats while working alongside a diverse, multinational team. The organisation stands out as the only global reinsurance provider focused primarily on life and health solutions, offering you the chance to contribute to meaningful work that makes financial protection accessible worldwide. You will benefit from a supportive and inclusive culture that values individuality, encourages pioneering thought, and provides vast opportunities for career growth. Flexible working arrangements and access to cutting-edge technology ensure you can thrive both personally and professionally in this forward-thinking environment. * Join a top company with a global presence, dedicated to solving real-world challenges through teamwork and advanced technology. * Be part of a collaborative, respectful workplace that celebrates diversity, fosters creativity, and supports your professional development at every stage. * Enjoy flexible working opportunities and the chance to work with knowledgeable colleagues who are passionate about making a positive impact on people's lives.

What you'll do:

As a Threat Detection Engineer in Kuala Lumpur, you will be instrumental in shaping the standards, procedures, and processes that protect the organisation from cyberattacks. Your day-to-day activities will involve collaborating closely with global security operations teams to drive continuous improvement in threat detection capabilities. You will have the autonomy to lead critical functions such as incident response or offensive security while also developing innovative automations that enhance operational efficiency. By providing expert analysis during complex incidents, supporting audit efforts, managing advanced tooling, mentoring colleagues, and delivering insightful reporting, you will ensure that the organisation remains resilient against evolving cyber threats. Your proactive approach will help create an environment where risks are managed effectively and best practices are shared across teams.

• Participate in a 24/7 on-call rotation when required, handling alert triage and conducting thorough investigations into potential security incidents.
• Take ownership of key functions such as incident response, threat detection, or offensive security initiatives, ensuring robust protection across the organisation.
• Design, develop, and implement orchestrations and automations that streamline security operations by reducing manual tasks and increasing efficiency.
• Conduct high-level analysis of intrusions or defensive measures to identify vulnerabilities and recommend improvements for enhanced security posture.
• Lead efforts related to security audits, compliance checks, and risk-reduction projects aimed at minimising exposure to cyber threats.
• Drive the development, testing, and management of both offensive and defensive security tools to support ongoing operational needs.
• Provide mentorship and guidance to junior team members, fostering knowledge sharing and skill development within the team.
• Develop comprehensive metrics and reports at both organisational and company levels to inform decision-making and track progress on security objectives.
• Determine logging requirements necessary for effective threat detection and rapid response to emerging risks across various platforms.
• Deliver impactful team-level projects designed to reduce the overall risk or impact of cybersecurity incidents throughout the business.

What you bring:

To excel as a Threat Detection Engineer in this role, your background should demonstrate significant hands-on experience across multiple domains of cybersecurity. Your technical acumen should encompass not only deep familiarity with operating system internals but also advanced scripting abilities that enable you to automate complex workflows efficiently. You will bring proven success in identifying monitoring gaps within large-scale environments while developing actionable metrics that drive continuous improvement. Your interpersonal skills will allow you to collaborate seamlessly with partner teams around the world—sharing knowledge generously while guiding less experienced colleagues. Adaptability under pressure is essential as you balance competing priorities in a fast-evolving landscape. A passion for learning new technologies combined with an analytical mindset ensures you can translate business needs into practical solutions that strengthen overall resilience.

• A bachelor’s degree in Arts or Sciences (BA/BS) or equivalent experience is essential for this position.
• At least six years’ experience in one or more areas such as incident response, security engineering, offensive security, threat emulation, penetration testing or security operations is required.
• A minimum of three years’ experience creating automation workflows to scale security operations is expected.
• Ideally eight or more years of relevant experience within cybersecurity roles is preferred for this role.
• Demonstrated ability to identify telemetry gaps in security monitoring systems and address them effectively is highly valued.
• Proven experience developing cybersecurity metrics and reporting frameworks that support operational excellence is important.
• Experience leading purple team exercises including risk hunting, telemetry validation and detection efficacy is advantageous.
• Advanced data analytical skills with proficiency investigating network, host, cloud and identity platforms are required.
• Ability to work independently within a globally distributed environment while maintaining strong written and verbal communication skills is crucial.
• Technical expertise across Windows, MacOS, Linux internals; scripting languages (Powershell/Python/Javascript/Typescript); forensic tools (FTK, Encase, X-Ways, SIFT); cloud computing (AWS); M365 Suite; Microsoft domain environments; IAM/AAA technologies (Active Directory, Okta); networking technologies; SIEM (Splunk); EDR (CrowdStrike/Microsoft Defender); threat intelligence platforms; email security; DNS architecture/security is required.
• Experience with GCP/Azure cloud platforms; additional forensic tools; ServiceNow; industry certifications; contributions at conferences/publications/seminars are all considered beneficial.

What sets this company apart:

This organisation distinguishes itself through its unwavering commitment to purpose-driven work—focusing exclusively on life- and health-related solutions that make financial protection accessible globally. Employees enjoy being part of an inclusive community where respect for individuality goes hand-in-hand with encouragement for creative thinking. The company’s multinational workforce brings together bright minds from diverse backgrounds who share knowledge openly while supporting each other’s growth. With flexible working opportunities available alongside access to state-of-the-art technology platforms—including artificial intelligence-powered recruitment tools—the business ensures every employee has what they need to succeed both personally and professionally. Career progression is supported by generous training opportunities so you can continue expanding your expertise over time. Above all else, you’ll find yourself surrounded by caring colleagues who value collaboration just as much as results—making it an ideal place for those seeking meaningful impact within their careers.

What's next:

If you are ready to take your cybersecurity expertise to new heights within a truly global setting—this could be your next great career move!

Do note that we will only be in touch if your application is shortlisted.

Agensi Pekerjaan Robert Walters Sdn Bhd
Business Registration Number : 729828-T
Licence Number : JTKSM 423C