Endpoint Correlation Engine (ECE) is a common module based on the Windows /macOS platform from the core technology department. Its function is to record the trace generated by different processes in system, such as the creation of the process, file / registry read and write and network access. All of this information will be recorded in the local database. When the threat detection module detects a security threat in the system, it can be based on the information recorded back to the source of the threat. At the same time, EC built-in industry-leading intelligent algorithm, according to the recorded information to detect abnormal behavior, and to prevent advanced persistent attack (APT) and reveal 0day vulnerability attacks. After several years of evolving, Endpoint Anomaly Detection and Indicator of Attack have been innovated and become key features of EDR products in Trend Micro.
Job Description 1. Design and develop Endpoint Correlation Engine on Windows platform - Design documents - Feature implementation - Code review - Bug fix, including dump analysis 2. Work closely with product teams for new feature design, implementation and module integration 3. Application debug and dump analysis 4. Malware behavior analysis, infection chain correlation. 5. Malware landscape prediction. 6. New technology research, prototype POC 7. Competitor products research, reverse engineering
Requirements • Bachelor or Master's Degree in Computer Science or related field • 5+ years' experience of software development • Strong C, C++ coding and debugging skill • Solid experience in development on Windows platform is a must requirement, Linux is a plus • Experience of OS Kernel and debugging as a big plus (Windows or Linux) • Security related experience as a big plus • Machine learning/Deep learning related experience as a plus • Fast learning on new technology, sense of innovation and creativity • Open, direct communicator with collaborative working style. Be a good team player to co-work with globally development sites. • Experience working in agile methodologies • Attention to detail and quality