Job Description

About Trellix:



Trellix is the cybersecurity company transforming security operations with artificial intelligence (AI), analytics, and automation to create a resilient digital world. Our market-leading AI-powered XDR Platform learns and adapts to disrupt active threats and empower CISOs with living security. The platform's open architecture and broadest set of native security controls across endpoint, email, network, cloud, and data security integrates with over 500 third-party tools to create multi-vector, multi-vendor event correlation and context to speed up investigations. The Trellix Advanced Research Center provides an additional layer of protection by continuously informing the platform on the latest threat actor TTPs (techniques, tactics, and procedures) and recommendations from millions of global sensors. Trellix and an extensive partner ecosystem accelerate technology innovation and empower over 40,000 business and government customers to build confidence in the protection and resilience of their operations. Learn more at Trellix.com.





•Role Overview: •



Join us in our mission to develop a cutting-edge detection and response platform that protects our customers from emerging threats. If you're passionate about making a difference in cybersecurity and thrive in a fast-paced, innovative environment, we want to hear from you. Take the next step in your career and apply today!





Company Overview:



Trellix is a global company redefining the future of cybersecurity. The company's open and native extended detection and response (XDR) platform helps organizations confronted by today's most advanced threats gain confidence in the protection and resilience of their operations. Trellix's security experts, along with an extensive partner ecosystem, accelerate technology innovation through machine learning and automation to empower over 40,000 business and government customers. More at https://trellix.com.



About the role:



In this role within our XDR Research team, you will serve as a leading expert in cybersecurity threats and attack methodologies, contributing significantly to the protection of our clients against emerging cyber threats.



Serving in the role of Security Researcher your responsibilities will include:



• Researching Emerging Threats: Stay at the forefront of the cybersecurity landscape by conducting in-depth research into emerging threats, ensuring our platform remains ahead of potential risks.
• Designing New Detection Use Cases: Collaborate with cross-functional teams to design innovative detection use cases, addressing evolving threats and enhancing our platform's capabilities across email, endpoint, network, identity.
• Developing Detection Content: Utilize your expertise to develop detection content in various forms, such as signatures, correlations, and analytics, to bolster our platform's ability to identify malicious activities.
• Enhancing Response Capabilities: Work closely with our engineering team to enhance response capabilities within our XDR platform, ensuring efficient and effective incident response workflows.
• Threat Emulation: Participate in threat emulation exercises to validate the effectiveness of detection use cases and response capabilities, ensuring they meet the detection requirements across Trellix portfolio.

Your opportunity for impact extends beyond traditional detection engineering tasks. You'll have the opportunity to contribute to the development of response playbooks, engage in proactive threat hunting, and share your insights through publishing research blogs.



About you:


• 3+ years of Security Operations Center or Incident Response experience
• 2+ years of experience writing and tuning security detection and prevention rules
• Experience using EDR and SIEM solutions to detect and analyze threats
• Experience using SOAR tools to build playbooks that reduce alert fatigue, improve alert efficacy, augment investigative workflows, and implement remediation actions
• Experience conducting malware analysis, host and network forensics, log analysis, and triage in support of incident response
• A strong understanding of how to investigate threats that span on-prem and cloud environments
• Experience applying cyber threat intelligence to signals provided by security tools to make alerts more actionable
• Experience with industry-wide frameworks and standards like MITRE ATT&CK, STIX, and Sigma

Additional Qualifications


• Experience with scripting languages (e.g., Python, PowerShell) for automation and data manipulation
• Experience with Machine Learning, UEBA and data analytics techniques for threat detection
• Strong communication skills and ability to effectively collaborate with cross-functional teams
• Experience working in product-focused organizations or developing cybersecurity products
• Master's Degree in Cyber Security is a plus
• Relevant certifications such as CISSP, GIAC or CEH

•Company Benefits and Perks: •





We work hard to embrace diversity and inclusion and encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.


• Retirement Plans
• Medical, Dental and Vision Coverage
• Paid Time Off
• Paid Parental Leave
• Support for Community Involvement


We're serious about our commitment to diversity which is why we prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.



Apply Now


Share This Job
Share on Facebook
Share on Twitter
Share on Linkedin
Share on Email