Threat Researcher

Don't see the dream job you are looking for? Drop off your contact information and resume. We will reach out to you if we find the perfect fit! For over 30 years, Trend Micro's unwavering vision has been to make the world safe for exchanging digital information. Security is our entire focus, and it shows. This single-minded passion has inspired our innovations that keep up with the bad guys despite a changing IT landscape, riskier user behavior, and constantly evolving threats. We embrace change, empower people, and encourage innovation in a connected world. Our diversity and multicultural workforce are key contributing factors to our success across the globe. At Trend Micro, we're always looking for top talent and you will work with the best. With us, you have the opportunity to thrive in an industry that is dominating the news worldwide. Explore Working at Trend https://www.trendmicro.com/en_us/about/careers.html Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information. Fueled by decades of security expertise, world-leading global threat research and intelligence, and continuous innovation, our cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints With 7,000 employees across 65 countries, and the world’s most advanced global threat research and intelligence, Trend Micro enables organizations to simplify and secure their connected world. TrendMicro.com Overview: We are a world class Information Security team, one of the best in Canada. We specialize in vulnerability research and rules development. Located in Ottawa, researching for Trend Micro’s flagship DataCenter Security Product called Deep Security and Cloud Security Service Trend Micro Cloud One. The team is referred to as our Deep Security Labs team. Working with other global teams, this team is chartered to keep abreast with the latest vulnerabilities and provide timely protection to our customers by preventing network threats and detecting local indicators of compromise. We are looking for someone passionate about information security. Whether you like to dig into vulnerabilities and exploits, you love hacking web applications, studying malware, playing with metasploit or running pen-tests; we are interested in helping you develop your passion further. We are on a mission to prevent servers from being attacked against vulnerabilities and threats. You don’t have to be a security expert. If you understand computers and TCP/IP networks, HTTP and other layer 7 protocols well you are more than welcome to apply for this position. Responsibilities: Write and Test IPS, Integrity Monitoring and Log Inspection rules for quality, functionality, false positives and false negatives, regression, performance, etc. This involves: Vulnerability/attack scenario reproduction to ensure the attack is well understood and well protected against Carry out testing with exploit PoCs, viruses, Metasploit and other exploit tools. Review for flaws in the rule and relevant codes which have a tendency of being logical/state/detail oriented Security patch analysis Implement and design small-scale to medium-scale automation in order to simplify testing tasks, improve and assure the best quality using Perl, python, ruby etc. Vulnerability and threat monitoring Vulnerability scanner execution & results analysis Develop and perform test cases based on the objectives of the test Script various tasks and activities by using bash, ruby, batch, perl Understand and interpret the detailed information on vulnerabilities and exploits in pursuance of quality testing, test cases generation and quality assurance Utilize common tools such as VMware suite, SQL, binary editors, terminal clients, RDP clients, browser’s developers’ tools Performance testing Perform weekly routine responsibilities such as: shipping/testing of the virtual patches, rule testing, QA review, reproductions Experience Required: Good hands-on Security tools, vulnerability scanners, fuzzing tools, pen testing tools. Knowledge in TCP/IP protocols and deeper knowledge of application layer protocols like HTTP, FTP, DNS. Experience with signature development/testing OR penetration testing, along with writing exploit code. Solid understanding of Operating Systems Internals. Knowledge of scripting languages. Knowledge of Cloud Service and Container. Desired skills: A passion for information security. In-depth knowledge of various protocols like HTTP, CIFS, MSRPC, SMB, IMAP, NTP, SNMP etc. In our Ottawa teams, we enjoy: Small team settings with passionate, motivated team mates Top-notch benefits and competitive compensation Opportunities to pursue continued training, industry events and conferences Frequent team activities, project celebrations, and knowledge sharing Collaborative office workspaces with unique and spacious lounge areas Regular Hack Days! Foosball and ping-pong Free coffee, tea and snacks Secure indoor bicycle room & shower/change rooms Trend Micro has been recognized as one of the National Capital Region's top employers. If you are interested in learning more, follow the link to see why working at Trend Micro could be the right move for you https://content.eluta.ca/top-employer-trend-micro-canada-technologies Our Hiring Process: Building our team at Trend is an incredibly important shared responsibility. The typical process looks like this: After you apply online, if you're selected for an interview you will hear from someone in our recruitment team A quick initial call with a recruiter is typical, and you can use it to share more about yourself and get answers to questions about the position A multi-part interview that gives you the chance to meet one or more members of the team you'll be joining, as well as a manager. Next comes the offer stage and a final call with a manager to discuss expectations and terms. At Trend Micro, we embrace change, empower people, and encourage innovation in a connected world. Our diversity and multicultural workforce are key contributing factors to our success across the globe. Trend Micro welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.