• Quality Assurance Engineer – Intrusion Prevention

    Job ID
    2018-21341
    Location
    CZ-
    Country
    Czech Republic
  • Overview

    Trend Micro: Securing Your Journey to the Cloud

    As a global leader in cloud security, Trend Micro develops Internet content security and threat management solutions that make the world safe for businesses and consumers to exchange digital information. With over 20 years of experience, we’re recognized as the market leader in server security for delivering top-ranked client, server, and cloud-based data protection solutions that stop threats faster and protect data in physical, virtualized, and cloud environments.

     

    We are a world class Information Security team. We specialize in vulnerability research and rules development.  Working with other global teams, this team is chartered to keep abreast with the latest vulnerabilities, and provide timely protection to our customers by preventing threats over the network and detect local indicators of compromise.

     

    Information Security Specialist 

    We are looking for someone who is passionate about information security. Whether you like to dig into vulnerabilities and exploits, you love hacking web applications, study malware, play with metasploit or run pen-tests, we are interested in helping you develop your passion further. We are on a mission to prevent servers from being attacked against vulnerabilities and threats.

    The Responsibilities

    • Test IPS, Integrity Monitoring and Log Inspection rules for quality, functionality, false positives and false negatives, regression, performance, etc. This involves
      • Vulnerability/attack scenario reproduction to ensure the attack is well understood and well protected against
      • Carry out testing with exploit PoCs, viruses, Metasploit and other exploit tools.
      • Review for flaws in the rule and relevant codes which have a tendency of being logical/state/detail oriented
      • Security patch analysis
    • Implement and design small-scale to medium-scale automation in order to simplify testing tasks, improve and assure the best quality using Perl, python, ruby etc.
    • Vulnerability and threat monitoring
    • Vulnerability scanner execution & results analysis
    • Develop and perform test cases based on the objectives of the test
    • Script various tasks and activities by using bash, ruby, python, Perl
    • Understand and interpret the detailed information on vulnerabilities and exploits in pursuance of quality testing, test cases generation and quality assurance
    • Utilize common tools such as VMware suite, SQL, binary editors, terminal clients, RDP clients, browser’s developers’ tools
    • Performance testing
    • Perform weekly routine responsibilities such as: shipping/testing of the virtual patches, rule testing, QA review, vulnerability reproductions.

    You Are

    • Good hands-on Security tools, vulnerability scanners, fuzzing tools, pen testing tools.
    • Knowledge in TCP/IP protocols and deeper knowledge of application layer protocols like HTTP, FTP, DNS.
    • Experience with signature development/testing OR penetration testing, along with writing exploit code.
    • Solid understanding of Operating Systems Internals.
    • Knowledge of scripting languages.

    You Have

    • A passion for information security.
    • In-depth knowledge of various protocols like HTTP, CIFS, MSRPC, SMB, IMAP, NTP, SNMP etc.
    • Experienced required: 3-7 years.

    Apply

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Not ready to apply? Connect with us for general consideration.