Join Trend Join New Generation
- / / /
===============================================================
Overview
Cyber Threat Red Team
The team performs ethical hacking to help identify potential threats and risks to businesses before they evolve into fully fledged threats. The information is then used by the organization to improve system security, minimizing the risk of potential attacks.
Job Responsibilities
- Perform red teaming and penetration testing against critical Trend Micro cloud applications and corporate infrastructure
- Document and report findings to engineering and management teams
- Design and test new security technologies, automations, and controls
- Recognize and safely utilize attacker tools, tactics, and procedures
- Develop scripts, tools, or methodologies to enhance red teaming processes
- Simulate real-world attacks and conduct research on offensive techniques and evasion methods
Qualification/Requirement
- Understanding of computer hardware, software, networks, communications and connectivity
- Familiarity in both Linux/Unix and Windows operating systems
- Proficiency in wireless, mobile device security, cloud technologies (IaaS, SaaS environments, etc.), and web technologies
- Experience using scanning, attack, and assessment tools and techniques, including proficiency in at least one C2 framework
- Experience conducting full-scope assessments and penetration tests, including phishing, social engineering, server and client-side attacks, protocol subversion, network and web application exploitation
- Understanding of SQL, XSS, CSRF, XXE, and other current trends in web exploitation
- Demonstrated experience in technical report writing
- Experience in red teaming and penetration testing is preferred, with 2 or more years being a plus
- Possession of OSCP+, OSWE, OSEP, or other practical offensive-related hands-on certifications will be considered an advantage
- Experience with mobile and cloud environments
- Excellent oral and written communication and analytical skills
- Ability to work independently and as part of a team to achieve objectives
- Ability to leverage and modify existing exploits or PoCs to conduct vulnerability testing
- Average or above English writing and speaking ability is expected
===============================================================
