Cyber Security Analyst (InfoSec)

Trend Micro is seeking a passionate Cyber Security Analyst to monitor and respond to security incidents detected by SIEM systems and user reports. The role involves initial investigation, triage, containment, and remediation of incidents, escalating complex cases to senior analysts. Responsibilities also include documenting findings, discovering TTPs, developing new SIEM use cases, and evaluating security controls against current threats. The analyst will stay updated on vulnerabilities and attacks, contributing to making the digital world safe.

Must Have

• Monitor and respond to incoming event queues for potential information security incidents.
• Provide initial investigation, triage, and security countermeasures for incidents.
• Document investigation results and escalate to senior analysts.
• Discover tactics, techniques and procedures (TTPs) and develop new SIEM use cases.
• Participate in continuous evaluation of security controls against current threats.
• Stay up-to-date with current vulnerabilities, attacks, and countermeasures.
• Good knowledge/experience in Windows and Linux operating systems security.
• Good verbal and written English communication skills.
• Knowledge in current tactics, techniques and procedures (TTPs) used to breach an enterprise.
• Knowledge in Perl, Python, or any scripting language (bash, PowerShell).
• Basic knowledge in cloud computing platforms (AWS, Azure, GCP).

Job Description

What you'll do

• Monitor and respond to incoming event queues for potential information security incidents detected by SIEM system and user-reported incident claims.
• Provide initial investigation, triage of potential incidents and security countermeasures, containment, remediation and escalate or close events as applicable.
• Document investigation results, ensuring relevant details are escalated to senior anlysts (L2) for final event analysis
• Discover tactics, techniques and procedures (TTPs) from incident investigations and develop new SIEM use cases for continuous security monitoring
• Participate in continuous evaluation of security controls (technology or process) against the current threats
• Stay up-to-date with current vulnerabilities, attacks, and countermeasures
• Rotational work shifts (evenings and weekends) may be required

What you'll need

• Any Bachelor’s degree
• Must be eager to pursue long-term interest in information security field and investigative work
• Must have good knowledge/experience in Windows and Linux operating systems security
• Must have good verbal and written English communication skills
• Knowledge in the current tactics, techniques and procedures (TTPs) being used to breach an enterprise
• Knowledge in Perl, Python or any scripting language (bash, PowerShell)
• Basic knowledge in cloud computing platforms (AWS, Azure, GCP)
• Must be available to work on-call or off hours as needed to sustain operation