Threat Researcher

When you join Trend, you become part of a unique and diverse global family and you get to work towards a world safe for exchanging digital information.

Threat Research Engineer
- Cloud and XDR

ABOUT TREND MICRO

Trend Micro, a global cybersecurity leader, helps make the world safe for exchanging digital information. Fuelled by decades of security expertise, global threat research, and continuous innovation, Trend Micro's cybersecurity platform protects hundreds of thousands of organizations and millions of individuals across clouds, networks, devices, and endpoints. As a leader in cloud and enterprise cybersecurity, the platform delivers a powerful range of advanced threat defence techniques optimized for environments like AWS, Microsoft, and Google, and central visibility for better, faster detection and response. With 7,000 employees across 65 countries, Trend Micro enables organizations to simplify and secure their connected world. For additional information, visit

POSITION OVERVIEW

We are seeking an entry to mid-level Threat Researcher to join our team. You will contribute to researching threats in cloud-native environments, container technologies, and XDR systems. Your role will include developing threat models, analyzing emerging attack vectors, and contributing to the enhancement of XDR capabilities to detect and respond to advanced threats.

RESPONSIBILITIES
- Research vulnerabilities and threats targeting cloud-native environments such as AWS, Azure, Kubernetes, and Docker.
- Conduct real-time threat analysis, including malware, ransomware, and advanced persistent threats (APTs), using XDR solutions.
- Develop threat detection rules and techniques tailored for cloud and XDR environments.
- Assist in attack simulations and red team exercises to evaluate detection and response effectiveness.
- Collaborate with senior researchers to create and enhance threat models for cloud and XDR security.
- Analyze telemetry data from XDR platforms to uncover threat patterns and drive security improvements.
- Design and maintain honeypots to identify new and evolving threats within cloud and XDR systems.
- Work closely with the XDR team to integrate research findings into platform capabilities for better detection and remediation.
- Contribute to internal and external communications, raising awareness about emerging threats and security challenges in the cloud and XDR domains.
- Provide actionable insights and feedback to improve security products in alignment with the evolving threat landscape.

EXPERIENCE
- Strong understanding of cloud platforms, particularly AWS and Azure.
- Familiarity with container technologies and orchestration tools such as Kubernetes, Docker, and Podman.
- Knowledge of CNCF tools, DevOps practices, and cloud-native architectures.
- Experience or keen interest in threat hunting and addressing APTs targeting cloud and XDR systems.
- Understanding of XDR platforms, including attacker tactics, techniques, and procedures (TTPs).
- Proficiency in scripting or programming (Python, Bash) for developing detection capabilities.
- Experience with Linux/Unix and Windows operating systems.
- Knowledge of incident response, forensics, and breach attack simulation tools is a plus.
- Exposure to exploit development and malware analysis is an added advantage.
- Strong problem-solving skills with the ability to work independently and collaboratively in a team environment.

Trend Micro strive to build an environment of equity and inclusion, which reflects diverse points of view. We welcome, value, promote, and celebrate diversity - the very experiences and attributes that make us who we are, including but not limited to race, ethnicity, nationality, gender, gender identification, sexual orientation, level of ability, age, religion, veteran status, socio-economic status, and political philosophy.

We embrace change, empower people, and encourage innovation. Join Trend Micro and Thrive with us.