Incident Response Analyst

Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information. Fueled by decades of security expertise, world-leading global threat research and intelligence, and continuous innovation, our cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints

With 7,000 employees across 65 countries, and the world’s most advanced global threat research and intelligence, Trend Micro enables organizations to simplify and secure their connected world. TrendMicro.com

Position Summary:
The Incident Response Analyst supports Trend Micro efforts to provide incident response and analytic capabilities to technical support cases submitted to Trend Micro, as well as to the Managed Detection and Response Operations. The Incident Response Analyst has technical knowledge and experience performing incident response, network monitoring, and has performed related malware analysis. The Incident Response Analyst should be a strong leader with the ability to perform multiple types of analysis roles independently, or co-working with a Security Operations Center includes providing mitigation recommendations. Finally, the Incident Response Analyst shall at times deliver senior level briefings that address cases or ongoing investigations.

Roles and Responsibilities:

• Oversee all incident response, from detection to incident resolution.

• Serve as a contact point for suspicious and malicious events escalated by technical support cases, as well as from the Managed Detection and Response Operations.

• Perform host and network level analysis to support on-going investigations through incident response.

• Review and analyze technical components of malware and other related threat activities while developing and refining detection criteria.

• Review security events and data sources to develop and refine detection criteria, as well as generate threat intelligence.

• Must be willing and able to travel, when necessary.

• Occasional evenings and weekends may be required.

• Must be able to work 'on call' for incident response.

Technical Qualifications:

• Multiple years of experience in a full-time security position, preferably working in IR and threat detection

• Familiarity with Trend Micro products and technology, such as VSAPI, Behavioral Monitoring, Web/Email Reputation or the Connected Threat Defense strategy

• Expert use of using Trend Micro tools, products or technology to manage incidents and perform incident investigations

• Expert analysis experience or administrator level knowledge of Windows, Mac, or Linux systems

• Experience with log analysis, event correlation and incident management procedures and systems, as well as knowledge of host and network log sources to apply to investigation and IR methodology in investigations

• Previous experience with malware, digital forensics techniques and various commercial and open source tools is a plus, such as (but not limited to) memory (winpmem) and disk (dd, dclfdd) dumpers, FTK Imager, SIFT Workstation, Volatility Framework, Wireshark, Bro/SiLK, Netflow

Qualifications:

• At least a bachelor’s degree in a related field, or 3 years of relevant experience.

• Aptitude for learning, be self-directed, and be capable of working in a fast-paced operations environment

• Strong abilities to communicate through oral and written methods to internal and external stakeholders

• Strong abilities to interface between multiple departments, with strong customer service skills

• Must be willing to travel as required to respond to an incident (less than 10% travel)

• Must be available to work on-call or off hours as needed to respond to an incident

DEI Commitment:

Not meeting every single requirement? At Trend Micro, we're committed to fostering a diverse, inclusive, and genuine workplace. If you're enthusiastic about this position but find that your experience and background don't perfectly match every qualification listed in the job posting, we still encourage you to apply. You could very well be the ideal candidate for this position or others within our organization.

What We Offer You:

You're important to us. What matters to you, matters to us too. Trend Micro provides benefit options for you and your family.

• Comprehensive medical, dental and vision insurance

• Life insurance

• Short & Long Term Disability 

• Pre-partum, maternity, parental and medical leave

• Mental Health Wellness Program

• Adoption Assistance

• Wellness Incentive

• Pet Insurance

• 401(k) with company match

• Paid Time Off

• 14 Annual Holidays

• Tuition Assistance

• Employee Resource Groups

We offer competitive compensation with bonus opportunity tied to company performance, along with room to enhance your skills through ongoing learning and broad technological opportunities. Achieving work-life balance is a priority, complemented by team activities, fostering an environment rooted in equity, inclusion, and collaboration, that is reflected in both our culture and our work.

Be Passionate. Be Innovative. Be a Trender.

This position does not offer sponsorship for work permit applications or renewals, either now or in the future. Candidates must be authorized to work in the U.S. without the need for employment-based visa sponsorship, both currently and moving forward. The company will not sponsor applicants for U.S. work visa status for this role (including, but not limited to, H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT, or any other employment-based visa).

#LI-FS1

At Trend Micro, we embrace change, empower people, and encourage innovation in a connected world. Our diversity and multicultural workforce are key contributing factors to our success across the globe. Trend Micro provides equal employment opportunity for all applicants and employees. Trend Micro does not unlawfully discriminate on the basis of race, color, religion, sex, pregnancy and childbirth or related medical conditions, national origin, ancestry, age, physical or mental disability, medical condition, family care leave status, veteran status, marital status, sexual orientation, or gender identity.