Job Information
Trellix Senior Security Researcher (XDR - Threat Detection & Response) in Bangalore, India
Job Title:
Senior Security Researcher (XDR - Threat Detection & Response)
Role Overview:
Join us in our mission to develop a cutting-edge detection and response platform that protects our customers from emerging threats. If you're passionate about making a difference in cybersecurity and thrive in a fast-paced, innovative environment, we want to hear from you. Take the next step in your career and apply today!
Company Overview:
Trellix is a global company redefining the future of cybersecurity. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with an extensive partner ecosystem, accelerate technology innovation through machine learning and automation to empower over 40,000 business and government customers. More at https://trellix.com .
About the role:
In this role within our XDR Research team, you will serve as a leading expert in cybersecurity threats and attack methodologies, contributing significantly to the protection of our clients against emerging cyber threats.
Serving in the role of Senior Security Researcher your responsibilities will include:
Researching Emerging Threats: Stay at the forefront of the cybersecurity landscape by conducting in-depth research into emerging threats, ensuring our platform remains ahead of potential risks.
Designing New Detection Use Cases: Collaborate with cross-functional teams to design innovative detection use cases, addressing evolving threats and enhancing our platform's capabilities across email, endpoint, network, identity.
Developing Detection Content: Utilize your expertise to develop detection content in various forms, such as signatures, correlations, and analytics, to bolster our platform's ability to identify malicious activities.
Enhancing Response Capabilities: Work closely with our engineering team to enhance response capabilities within our XDR platform, ensuring efficient and effective incident response workflows.
Threat Emulation: Participate in threat emulation exercises to validate the effectiveness of detection use cases and response capabilities, ensuring they meet the detection requirements across Trellix portfolio.
Your opportunity for impact extends beyond traditional detection engineering tasks. You'll have the opportunity to contribute to the development of response playbooks, engage in proactive threat hunting, and share your insights through publishing research blogs.
About you:
5+ years of Security Operations Center or Incident Response experience
5+ years of experience writing and tuning security detection and prevention rules
Experience using EDR and SIEM solutions to detect and analyze threats
Experience using SOAR tools to build playbooks that reduce alert fatigue, improve alert efficacy, augment investigative workflows, and implement remediation actions
Experience conducting malware analysis, host and network forensics, log analysis, and triage in support of incident response
A strong understanding of how to investigate threats that span on-prem and cloud environments
Experience applying cyber threat intelligence to signals provided by security tools to make alerts more actionable
Experience with industry-wide frameworks and standards like MITRE ATT&CK, STIX, and Sigma
Additional Qualifications
Experience with scripting languages (e.g., Python, PowerShell) for automation and data manipulation
Experience with Machine Learning, UEBA and data analytics techniques for threat detection
Strong communication skills and ability to effectively collaborate with cross-functional teams
Experience working in product-focused organizations or developing cybersecurity products
Master’s Degree in Cyber Security is a plus
Relevant certifications such as CISSP, GIAC or CEH
Company Benefits and Perks:
We work hard to embrace diversity and inclusion and encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.
Retirement Plans
Medical, Dental and Vision Coverage
Paid Time Off
Paid Parental Leave
Support for Community Involvement
We're serious about our commitment to diversity which is why we prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.
Trellix is a global company redefining the future of cybersecurity. The company’s open and native extended detection and response (XDR) platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix’s security experts, along with an extensive partner ecosystem, accelerate technology innovation through machine learning and automation to empower over 40,000 business and government customers. More at https://trellix.com .