Job Title:

Staff Security Researcher - EDR

About Trellix:

Trellix is a global company redefining the future of cybersecurity and soulful work. The company’s comprehensive, open and native cybersecurity platform helps organizations confronted by today’s most advanced threats gain confidence in the protection and resilience of their operations. Trellix, along with an extensive partner ecosystem, accelerates technology innovation through artificial intelligence, automation, and analytics to empower over 50,000 business and government customers with responsibly architected security. More at  https://trellix.com. 

Role Overview:

We are looking for a highly skilled and experienced Staff EDR Security Researcher to join our team. As a key member of our research team, you will focus on evaluating and enhancing our EDR product's detection capabilities, addressing detection gaps, and developing sophisticated detection models. You will work on complex projects and play a critical role in advancing our detection technologies.

About the Role:Lead reverse engineering and analysis efforts to detect and counter sophisticated attacks, with a focus on kernel-level analysis across Windows, Linux, and macOS.Conduct in-depth research on attacker campaigns and techniques to inform detection strategy and improve customer protection.Develop and optimize detection rules for behavior-based detection engines, leveraging deep knowledge of OS internals and assembly-level analysis.Demonstrate a strong understanding of cybersecurity threats, attack techniques, and the MITRE ATT&CK framework.Collaborate with cross-functional teams to drive exceptional customer experiences and ensure comprehensive protection.Design and implement advanced alerting, reporting, and automated detection solutions.Stay current on emerging threats and attack techniques to continuously strengthen detection strategies.

About You:9+ years in cybersecurity research with a proven track record in threat research and detection.5+ years in-depth understanding of Windows, Linux, or macOS, with a focus on kernel-level analysis and system mechanisms.5+ years with assembly x86/x64 expertise, capable of both static and dynamic analysis.3+ years handling anti-reverse engineering methods, including anti-debugging, anti-VM, and unpacking techniques.Strong knowledge of the cyber threat landscape, including APTs (Advanced Persistent Threats) and modern malware techniques.Strong experience in programming or scripting languages (e.g., Python, PowerShell) for automation and analysis.Proven leadership in driving complex projects and initiatives, with demonstrated ability to effectively manage multiple priorities and deadlines.Demonstrated ability to mentor and develop junior researchers, fostering technical growth and skill development.Excellent verbal and written communication skills in English, with the capability to clearly and effectively convey complex technical concepts.

Company Benefits and Perks:

We work hard to embrace diversity and inclusion and encourage everyone to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.

Retirement PlansMedical, Dental and Vision CoveragePaid Time OffPaid Parental LeaveSupport for Community Involvement

We're serious about our commitment to diversity which is why we prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.