https://jalaly.com/blog Mansour Jalaly is a London-based security engineer specialising in detection engineering, cloud security, incident response, and threat intelligence. CISSP and GSEC certified, with experience across Oracle and S-RM. en-gb mansour@jalaly.com (Mansour Jalaly) mansour@jalaly.com (Mansour Jalaly) Thu, 28 May 2026 00:00:00 GMT https://jalaly.com/blog/project-vivarium https://jalaly.com/blog/project-vivarium An experiment in adversarial AI: local, air-gapped agent crews playing attacker and defender against each other in a sealed, fully observable lab. Thu, 28 May 2026 00:00:00 GMT mansour@jalaly.com (Mansour Jalaly) AIAgentsRed TeamBlue TeamDetection EngineeringProject Vivarium https://jalaly.com/blog/detection-as-code https://jalaly.com/blog/detection-as-code Version control, CI testing, and ATT&CK coverage mapping turned a folder of SIEM rules into an engineering discipline. What changed, what it cost, and what I would do differently. Fri, 14 Nov 2025 00:00:00 GMT mansour@jalaly.com (Mansour Jalaly) Detection EngineeringDetection as CodeSigmaMITRE ATT&CKCI/CD https://jalaly.com/blog/ai-in-the-soc https://jalaly.com/blog/ai-in-the-soc Lessons from building ML-assisted detection in production: the places machine learning genuinely moves the needle, and the places it quietly makes things worse. Fri, 22 Aug 2025 00:00:00 GMT mansour@jalaly.com (Mansour Jalaly) AIMachine LearningSecurity OperationsDetection EngineeringSOC