Incident Response Engineer

؜ - ؜القاهرة ؜ -

تفاصيل الوظيفة

When you join Trend, you become part of a unique and diverse global family and
you get to work towards a world safe for exchanging digital information.
Job Title: Threat Intel Analyst
Location: Cairo, Egypt
Preferred certifications: GCIH, GCTI
Travel: Seldom
Description:
The Trend Micro Threat Intel Analyst (TIA) would be a member of the Managed
XDR (MDR) service supporting overall cyber threat analysis effort. The TIA
must have experience in intrusion detection and response, firewall
architecture, and emerging technologies. They must possess an expert grasp on
security vulnerabilities and malicious actor tactics, techniques, and
procedures (TTP) to better evaluate the effectiveness of layered defenses and
provide insight threat campaigns and distribution of malware. The TIA will
work with the Trend Micro Managed XDR team to describe possible association to
threat actors, existing or new threat campaigns, and relationship of
indicators of compromise (IOCs).
Responsibilities:
* Conduct threat intelligence activities to support the Trend Micro Managed XDR team, and collaborate with other threat research teams within Trend Micro.
* Collect, analyze and interpret qualitative and quantitative, technical and non-technical data to perform intelligence analysis.
* Conduct security research using internal and external sources, including but not limited to: cyber security web sites, forums, social media and traditional sources to support research processes.
* Perform open source intelligence (OSINT) collection and analysis, identifying the most relevant and immediate cyber threats, malicious code, suspicious domains, and security vulnerabilities.
* Perform malware analysis either through reverse engineering, black-box analysis or similar methods.
* Add threat intelligence enrichment and support investigation of suspected security incidents, including operating with malware and indicators of compromise (IOCs).
* Analyze and correlate incident data to develop a preliminary root cause and corresponding remediation strategy.
* Produce assessments on cyber threats and attacks that are of interest to Trend Micro.
* Work on projects that are relevant to Trend Micro, revolving around threat research and analysis.
* Provide subject matter expertise on cyber threats to support current analytical operations and initiatives.
* Provide timely, comprehensive, and accurate deliverables to key stakeholders in both written and verbal communications.
Qualifications:
* At least a bachelor's degree in a related field, with ‎2-‎3 years in a full-time security position related to Information Security Operations, preferably in a position involving threat detection and incident response.
* Had worked within SOC operations, or have been a member of teams participating in incident response, digital forensics, threat research or similar cyber experience.
* Had previous experience working with relevant subject matter experts to process, analyze and remediate threats through the use of endpoint protection products or endpoint detection and response suites, and related technology, such as EDR, anti-virus, anti-malware, IPS/IDS, and anti-phishing.
* Excellent understanding of cyber security frameworks, such as the Diamond Model of Intrusion Analysis, MITRE ATTA&CK framework, and utilize these frameworks to implement threat modelling in support of Threat Intelligence activities.
* Experienced in analyzing malware, hacking tools, threat actor tactics, techniques and procedures (TTPs) to characterize threat actor's technical methods for accomplishing their goals.
* Experienced in performing malware analysis either through reverse engineering, black-box analysis or similar methods.
* Strong working knowledge of security relevant data, including networking protocols, ports and common services, and application layer protocols (e.g., HTTP, DNS, FTP, SMTP, etc.).
* Working knowledge of privilege escalation persistence, lateral movement techniques developed by threat actors.
* Had prior experience with working with SIEM technology, open source intelligence (OSINT) tools, as well as threat intelligence platforms.
* Had prior experience in writing, editing and preparation of threat research materials, or had prior exposure to writing articles relevant to threat research
* Possess strong understanding of technical issues within IT environments, or environments that focused on research and development
* Excellent capabilities with documentation including writing technical write-ups
* Ability to provide insights to research and innovation
* Exceptional ability to communicate verbally and in writing; ability to work as a team member within a global team environment.
* Strong organizational and time-management skills, with flexibility in time and availability
Trend Micro strive to build an environment of equity and inclusion, which
reflects diverse points of view. We welcome, value, promote, and celebrate
diversity - the very experiences and attributes that make us who we are,
including but not limited to race, ethnicity, nationality, gender, gender
identification, sexual orientation, level of ability, age, religion, veteran
status, socio-economic status, and political philosophy
We embrace change, empower people, and encourage innovation. Join Trend Micro
and Thrive with us.

ملخص الوظيفة

  • المُعلن : Trend Micro
  • تاريخ الإعلان : 22/12/2022
  • نوع العمل : -
  • مستوى الخبرة : -
  • المستوى التعليمي : -
  • مكان العمل : القاهرة
  • الراتب : -
  • الهاتف : -

وظائف أخرى مثل هذه الوظيفة

القاهرة
22/02/2023

When you join Trend, you become part of a unique and diverse global family and you get to work towards a world safe for exchanging digital information. Incident Response Coordinator for MENA IR team under the Global Services Department Tasks and Responsibilities: * Work as a liaison from Trend Mi…

camp arifjan
20/12/2022

**Requisition #:** INCID003469 **Job Title:** Incident Response Analyst (H) **Location:** Camp Arifjan, Kuwait **Clearance Level:** Active DoD - Top Secret SCI **Required Certification(s):** * This position requires candidates to adhere to DoD 8570.01-M. All candidates are required to maintain at…

الرياض
19/06/2023

#### **Job Description** * Assist in the investigation of cyber security incidents such as cybercrime, fraud, and data breaches. * Utilize digital forensics tools and techniques to extract, analyze, and preserve digital evidence. * Conduct data analysis using a variety of tools and techniques…

القاهرة
18/12/2022

## **Long Description** Core competencies, knowledge, and experience : * 1-3 years of experience in Troubleshooting and Network Operations in IP Complex Solutions * Basic IP and Voice knowledge/ Experience in the area of Routing, Switching and IP services (DNS, DHCP, etc.) * Excellent knowle…

القاهرة
19/12/2022

## **About the role** **Job Responsibilities & Scope** * Troubleshoot, identify, and resolve IPT (Cisco) and backbone voice Incidents. * Troubleshoot, identify, and resolve call center and access number faults. * Troubleshoot value added services (Voice Mail, Attendant console, etc...). * …

القاهرة
29/04/2022

Provide a professional first and second technical support for a large customer * Work on both WAN (SDN) / LAN solutions, as well as Cisco IPT solution * Owns the chronic and the complex problems / incidents. * Highlight all the single point of failures and potential issues that might affec…

القاهرة
16/07/2022

## **About the role** ¦ Provide a professional first technical point of contact for the customer ¦ Acts as technical escalation level within the team. ¦ Acts as Knowledge management keeper. ¦ Responsible for the escalated tickets and participates in the generations and handling of the monthly trend…

القاهرة
11/08/2022

## **About the role** 1\. To provide a professional first technical point of contact for the customer . 2\. Diagnose fault-related cases by effectively utilizing software diagnostics and other network/product utility programs. 3\. Provide updates as needed to the customer in order to meet perfo…

القاهرة
20/12/2022

## **About the role** 1\. To provide a professional first technical point of contact for the customer . 2\. Diagnose fault-related cases by effectively utilizing software diagnostics and other network/product utility programs. 3\. Provide updates as needed to the customer in order to meet perfo…

القاهرة
14/06/2022

**Data de divulga çao da vaga** Jun 13, 2022 **N º do Cargo** 22098194 **Categoria de emprego** Rooms & Guest Services Operations **Local** Renaissance Cairo Mirage City Hotel, Ring Road, Mirage City, Cairo, Egypt, Egypt VER NO MAPA **Marca** Renaissance Hotels **Hor ario** Full-Time *…

Language: English