Threat Researcher

Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information. Fueled by decades of security expertise, world-leading global threat research and intelligence, and continuous innovation, our cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints

With 7,000 employees across 65 countries, and the world’s most advanced global threat research and intelligence, Trend Micro enables organizations to simplify and secure their connected world.

Overview:
We are a world class Information Security team, one of the best in Canada. We specialize in vulnerability research and rules development. Located in Ottawa, researching for Trend Micro’s flagship DataCenter Security Product called Deep Security and Cloud Security Service Trend Micro Cloud One. The team is referred to as our Deep Security Labs team. Working with other global teams, this team is chartered to keep abreast with the latest vulnerabilities and provide timely protection to our customers by preventing network threats and detecting local indicators of compromise.

**Responsibilities**:
- Write and Test IPS, Integrity Monitoring and Log Inspection rules for quality, functionality, false positives and false negatives, regression, performance, etc. This involves:
- Vulnerability/attack scenario reproduction to ensure the attack is well understood and well protected against- Carry out testing with exploit PoCs, viruses, Metasploit and other exploit tools.- Review for flaws in the rule and relevant codes which have a tendency of being logical/state/detail oriented- Security patch analysis- Implement and design small-scale to medium-scale automation in order to simplify testing tasks, improve and assure the best quality using Perl, python, ruby etc.- Vulnerability and threat monitoring- Vulnerability scanner execution & results analysis- Develop and perform test cases based on the objectives of the test- Script various tasks and activities by using bash, ruby, batch, perl- Understand and interpret the detailed information on vulnerabilities and exploits in pursuance of quality testing, test cases generation and quality assurance- Utilize common tools such as VMware suite, SQL, binary editors, terminal clients, RDP clients, browser’s developers’ tools- Performance testing- Perform weekly routine responsibilities such as: shipping/testing of the virtual patches, rule testing, QA review, reproductions

Experience Required:
- Good hands-on Security tools, vulnerability scanners, fuzzing tools, pen testing tools.-
- Experience with signature development/testing OR penetration testing, along with writing exploit code.- Solid understanding of Operating Systems Internals.- Knowledge of scripting languages.- Knowledge of Cloud Service and Container.

Desired skills:
- A passion for information security.- In-depth knowledge of various protocols like HTTP, CIFS, MSRPC, SMB, IMAP, NTP, SNMP etc.

In our Ottawa teams, we enjoy:
- Small team settings with passionate, motivated team mates- Top-notch benefits and competitive compensation- Opportunities to pursue continued training, industry events and conferences- Frequent team activities, project celebrations, and knowledge sharing- Collaborative office workspaces with unique and spacious lounge areas- Regular Hack Days- Foosball and ping-pong- Free coffee, tea and snacks- Secure indoor bicycle room & shower/change rooms

Our Hiring Process:
Building our team at Trend is an incredibly important shared responsibility. The typical process looks like this:- A quick initial call with a recruiter is typical, and you can use it to share more about yourself and get answers to questions about the position- A multi-part interview that gives you the chance to meet one or more members of the team you'll be joining, as well as a manager.- Next comes the offer stage and a final call with a manager to discuss expectations and terms.