Engineer - threat research (MITRE)

Join Trend ‧ Join New Generation

趨勢科技 - 全球雲端資安領航者 / 全亞洲最大軟體公司 / 企業版圖橫跨五大洲 / 趨勢全球研發基地在台灣 
===============================================================

Introduction:

As a Red Team Specialist with a focus on advanced persistent threat (APT) research, you will be a crucial member of a dedicated team responsible for bolstering our solution's resilience against sophisticated cyberattacks. Your primary role will involve simulating complex threat actor tactics and techniques, conducting in-depth research on emerging APT groups, and executing realistic red team exercises to proactively identify vulnerabilities and enhance our security posture.

Key Responsibilities:

• Design, deploy, and maintain a realistic cyber range environment using AWS or Azure cloud platforms to emulate complex network scenarios.
• Develop and execute advanced cyberattack scenarios based on real-world APT tactics, techniques, and procedures (TTPs) to uncover security gaps and evaluate the effectiveness of our solutions.
• Conduct thorough testing and validation of our security solutions against simulated APT attacks, ensuring robust defense mechanisms are in place.
• Collaborate closely with other solution teams to assess the impact of simulated attacks and contribute to the refinement of defensive strategies and security controls.
• Document findings, including detailed technical reports and actionable recommendations, to drive improvements in our threat detection and response capabilities.
• Participate in post-exercise debriefings to analyze attack simulations and contribute to continuous improvement initiatives for our red teaming methodologies and security solutions.
• Stay abreast of the latest cybersecurity trends, emerging APT groups, and evolving attack methodologies, incorporating this knowledge into our red teaming practices

​

Required Skills and Qualifications:

• Strong knowledge of Windows administration and Active Directory management.
• Familiarity with cloud integration and hybrid environments.
• Proven experience in red team operations and familiarity with tools and techniques used in offensive cybersecurity.
• In-depth understanding of advanced persistent threats (APTs), their methodologies, and the ability to emulate their behavior.
• Strong ability to develop and simulate complex cyber-attack scenarios and manage red team exercises.
• Excellent analytical and problem-solving skills, with the ability to think like both an attacker and a defender.
• Strong communication and collaboration skills, capable of working effectively with cross-functional teams.

Preferred Qualifications:

• Certifications such as OSCP, CEH, or other relevant cybersecurity certifications.
• Experience with scripting and programming languages such as Python, PowerShell, or Bash.
• Experience conducting research and analysis of APT groups, their tools, and infrastructure.
• Experience with multi-cloud or hybrid environments.

===============================================================
連結智慧 守護世界 --- Connected Intelligence for Securing a Connected World