• IPS Filter Developer - Austin, TX

    Job Location US-TX-Austin
    Posted Date 5 months ago(11/22/2017 1:52 PM)
    Job ID
    2017-20648
    # Positions
    3
    Employee Type
    R- Regular
    Full Time / Part Time
    Full Time
    Category
    Threat Experts
  • Overview

    Trend Micro: Securing Your Connected World

    Trend Micro, the world’s largest independent security software company, strives to make the world a safer place by protecting digital information. Our solutions for consumers, businesses and governments provide layered security to protect information on mobile devices, endpoints, gateways, servers and the cloud. Trend Micro enables the smart protection of information, with innovative technology that is simple to deploy and manage, and security that fits an evolving ecosystem. Our solutions are supported by over 5000 employees in over 50 countries and powered by the world’s most advanced cloud-based global threat intelligence, the Trend Micro™ Smart Protection Network™.

     

    We are looking for passionate and self-motivated security-minded individuals to join our filter development team popularly known as DVLabs.  Trend Micro TippingPoint Digital Vaccine® team (DVLabs) is a known leader in vulnerability discovery, analysis and protection via our Next-Generation Intrusion Prevention System (ngIPS).  Our team includes security professionals who apply cutting-edge research and analysis techniques to develop comprehensive protection for enterprise business systems.

     

    If you enjoy analyzing and exploiting vulnerabilities, study malware behavior, and researching exploit techniques and mitigations, we think you will find our team a perfect fit.  It’s an ideal place to take your skills to a next level in the areas of network packet analysis, file format and protocol dissection, and advanced regular expression development to identify malicious traffic. 

     

    This is an entry to medium experience position. Fresh grads who have acquired the required skills in security are welcome to apply.

     

    This specific position is located in Austin, Texas and the individual will work closely with our global teams.

    Duties & Responsibilities

    • Write network IPS filters and check them for false positives and false negatives, regression, performance, etc. This may involve
      • Vulnerability/attack scenario reproduction to ensure the attack is well understood and well protected against
      • Carrying out testing with exploit PoCs, viruses, Metasploit and other exploit tools.
    • Peer review of filters written by other team members
    • Vulnerability and threat monitoring

    Qualifications/Requirements

    • Knowledge of TCP/IP protocols and deeper knowledge of application layer (L7) protocols like HTTP, FTP, DNS etc.
    • Deconstruction and analysis of network-based vulnerabilities and exploits. 
    • Solid understanding of various types of vulnerabilities, exploits and exploit techniques.
    • Strong team and interpersonal skills along with the ability to work independently and achieve individual goals.

    Additional desired skills:

    • Experience with advanced Regular Expression development (PCRE or other).
    • Software development experience/proficiency in multiple languages.  C/C++ and other object-oriented platforms is a plus.  Experience with scripting languages such as Python/Perl/Ruby is also positive.
    • Experience with reverse engineering tools (e.g. disassemblers, debuggers, instrumentation frameworks, etc.)
    • High level of documentation and organizational skills are crucial to process repeatability.

    Trend Micro provides equal employment opportunity for all applicants and employees. Trend Micro does not unlawfully discriminate on the basis of race, color, religion, sex, pregnancy and childbirth or related medical conditions, national origin, ancestry, age, physical or mental disability, medical condition, family care leave status, veteran status, marital status, sexual orientation, or gender identity.

    Apply or Socialize

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed