Allow List Researcher - Bengaluru, India - Trellix

Trellix
Trellix
Verified Company
Bengaluru, India

1 month ago

Deepika Kaur

Posted by:

Deepika Kaur

beBee Recuiter
Description

_Role Overview:
_
We are seeking an enthusiastic Allow List Researcher to join our growing organization.

Our global ARC Threat Research organization works in the areas of malware research, response, Threat Intelligence and system Engineering and development.

As part of this role you will be expected to learn the ins-and-outs of our clean file categorisation procedures, source clean files and develop automation for automated classification, resolve false detections, and ensure mínimal false detection rates for ENS and other products.

Additionally, you will help to develop automation and author content which will help "fight the bad guys."


Key Responsibilities:

  • Perform Researcher level analysis and categorisation of nonmalicious files
  • Perform Researcher level analysis and categorisation of Potentially Unwanted Programs "PUPs"
  • Improve our sources of clean files
  • Resolve false positive detections on nonmalicious files
  • Analyse digital certificates and classify accordingly
  • Develop and improve automation for processing bulk samples
  • Resolve 3rd party vendor escalations
  • Resolve Gateway Anti-Malware false positive detections
  • Develop customer clean file submission programs
  • Proactively classify files to prevent detection
  • Write Crawler scripts.
  • Automate daily operational tasks
  • Take responsibility for updating skills and technical growth
  • Interact effectively with other team members, actively support both team and company direction
  • Able to effectively multitask, accepting changing direction in a fastmoving threat landscape

Required Experience / Skills & Education:

  • Degree Level Computing Qualification or equivalent with 2+ years demonstrated experience.
  • Ideally you will have previous experience in a Security Research / Content Categorisation related role
  • You should have experience in Python, C/C++, or other similar programming languages.
  • You should have experience of various malware analysis tools, and be able to determine if a file is clean, malicious or a "Potentially Unwanted Program"
  • You should have knowledge of Windows OS internals memory, threads, processes, API, etc.
  • You should have knowledge of Networking protocols and experience with network traffic analysis tools (Wireshark, Fiddler).
  • You understand Linux, MacOS malware and its threat landscape.
  • You should have excellent problemsolving skills, fast learner, selfmotivated to take initiatives with focus on achieving results in timely manner.
  • Ability to positively adapt to changes and multitasking in a fastmoving industry
  • Willingness to work flexible hours when required

_Company Benefits and Perks:
_


We work hard to embrace diversity and inclusion and encourage everyone to bring their authentic selves to work every day.

We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.

  • Pension and Retirement Plans
  • Medical, Dental and Vision Coverage
  • Paid Time Off
  • Paid Parental Leave
  • Support for Community Involvement


We're serious about our commitment to diversity which is why we prohibit discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

More jobs from Trellix
See all jobs of Trellix