Engineer - threat research (MITRE)

Taipei City
Permanent
Full-time

2 months ago

Join Trend ‧ Join New Generation趨勢科技 - 全球雲端資安領航者 / 全亞洲最大軟體公司 / 企業版圖橫跨五大洲 / 趨勢全球研發基地在台灣Introduction:As a Red Team Specialist with a focus on advanced persistent threat (APT) research, you will be a crucial member of a dedicated team responsible for bolstering our solution's resilience against sophisticated cyberattacks. Your primary role will involve simulating complex threat actor tactics and techniques, conducting in-depth research on emerging APT groups, and executing realistic red team exercises to proactively identify vulnerabilities and enhance our security posture.Key Responsibilities:

Design, deploy, and maintain a realistic cyber range environment using AWS or Azure cloud platforms to emulate complex network scenarios.
Develop and execute advanced cyberattack scenarios based on real-world APT tactics, techniques, and procedures (TTPs) to uncover security gaps and evaluate the effectiveness of our solutions.
Conduct thorough testing and validation of our security solutions against simulated APT attacks, ensuring robust defense mechanisms are in place.
Collaborate closely with other solution teams to assess the impact of simulated attacks and contribute to the refinement of defensive strategies and security controls.
Document findings, including detailed technical reports and actionable recommendations, to drive improvements in our threat detection and response capabilities.
Participate in post-exercise debriefings to analyze attack simulations and contribute to continuous improvement initiatives for our red teaming methodologies and security solutions.
Stay abreast of the latest cybersecurity trends, emerging APT groups, and evolving attack methodologies, incorporating this knowledge into our red teaming practices

Required Skills and Qualifications:

Strong knowledge of Windows administration and Active Directory management.
Familiarity with cloud integration and hybrid environments.
Proven experience in red team operations and familiarity with tools and techniques used in offensive cybersecurity.
In-depth understanding of advanced persistent threats (APTs), their methodologies, and the ability to emulate their behavior.
Strong ability to develop and simulate complex cyber-attack scenarios and manage red team exercises.
Excellent analytical and problem-solving skills, with the ability to think like both an attacker and a defender.
Strong communication and collaboration skills, capable of working effectively with cross-functional teams.

Preferred Qualifications:

Certifications such as OSCP, CEH, or other relevant cybersecurity certifications.
Experience with scripting and programming languages such as Python, PowerShell, or Bash.
Experience conducting research and analysis of APT groups, their tools, and infrastructure.
Experience with multi-cloud or hybrid environments.

連結智慧守護世界 --- Connected Intelligence for Securing a Connected World

Trend Micro

Apply Now