Incident Response Analyst

US-TX-Irving
2 weeks ago(1/4/2018 2:26 PM)
Job ID
2018-20731
# Positions
4
Employee Type
R- Regular
Full Time / Part Time
Full Time
Category
Threat Experts

Overview

Trend Micro: Securing Your Journey to the Cloud

Trend Micro, the world’s largest independent security software company, strives to make the world a safer place by protecting digital information. Our solutions for consumers, businesses and governments provide layered security to protect information on mobile devices, endpoints, gateways, servers and the cloud. Trend Micro enables the smart protection of information, with innovative technology that is simple to deploy and manage, and security that fits an evolving ecosystem. Our solutions are supported by over 5000 employees in over 50 countries and powered by the world’s most advanced cloud-based global threat intelligence, the Trend Micro™ Smart Protection Network™.

 

The Incident Response Analyst supports Trend Micro efforts to provide incident response and analytic capabilities to technical support cases submitted to Trend Micro, as well as to the Managed Detection and Response Operations. The Incident Response Analyst has technical knowledge and experience performing incident response, network monitoring, and has performed related malware analysis. The Incident Response Analyst should be a strong leader with the ability to perform multiple types of analysis roles independently, or co-working with a Security Operations Center includes providing mitigation recommendations. Finally, the Incident Response Analyst shall at times deliver senior level briefings that address cases or ongoing investigations.

 

Duties & Responsibilities

  • Oversee all incident response, from detection to incident resolution.
  • Serve as a contact point for suspicious and malicious events escalated by technical support cases, as well as from the Managed Detection and Response Operations.
  • Perform host and network level analysis to support on-going investigations through incident response.
  • Review and analyze technical components of malware and other related threat activities while developing and refining detection criteria.
  • Review security events and data sources to develop and refine detection criteria, as well as generate threat intelligence.
  • Must be willing and able to travel, when necessary.
  • Occasional evenings and weekends may be required.
  • Must be able to work 'on call' for incident response.

Qualifications/Requirements

Technical Qualifications:

  • 3+ years of experience in a full-time security position, preferably working in IR and threat detection
  • Familiarity with Trend Micro products and technology, such as VSAPI, Behavioral Monitoring, Web/Email Reputation or the Connected Threat Defense strategy
  • Expert use of using Trend Micro tools, products or technology to manage incidents and perform incident investigations
  • Expert analysis experience or administrator level knowledge of Windows, Mac, or Linux systems
  • Experience with log analysis, event correlation and incident management procedures and systems, as well as knowledge of host and network log sources to apply to investigation and IR methodology in investigations
  • Previous experience with malware, digital forensics techniques and various commercial and open source tools is a plus, such as (but not limited to) memory (winpmem) and disk (dd, dclfdd) dumpers, FTK Imager, SIFT Workstation, Volatility Framework, Wireshark, Bro/SiLK, Netflow

Qualifications:

  • At least a bachelor’s degree in a related field or 3 years of experience in lieu of.
  • Aptitude for learning, be self-directed, and be capable of working in a fast-paced operations environment
  • Strong abilities to communicate through oral and written methods to internal and external stakeholders
  • Strong abilities to interface between multiple departments, with strong customer service skills
  • Must be willing to travel as required to respond to an incident (less than 10% travel)
  • Must be available to work on-call or off hours as needed to respond to an incident

Trend Micro provides equal employment opportunity for all applicants and employees. Trend Micro does not unlawfully discriminate on the basis of race, color, religion, sex, pregnancy and childbirth or related medical conditions, national origin, ancestry, age, physical or mental disability, medical condition, family care leave status, veteran status, marital status, sexual orientation, or gender identity.

Apply or Socialize

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed