Incident Response Analyst

Trend Micro•Irving, TX

1d•Hybrid

About The Position

Trend Micro is seeking an Incident Response Analyst to join their Global Managed Detection & Response (MDR) team. This hybrid role, based in Las Colinas, Texas, focuses on 24/7 security monitoring, transforming it into intelligent, customer-centric threat defense. The position involves working with AI-driven alert triage and anomaly detection to identify threats faster, reduce false positives, and build trusted relationships with enterprise customers. Analysts will investigate sophisticated security breaches, lead containment efforts, and translate complex threat data into actionable intelligence. The role also involves contributing to the development and refinement of AI-driven incident response workflows, making analysts active participants in shaping the future of AI in cybersecurity. The goal is to compress detection times, deliver insights for lasting security improvements, and make customers measurably harder to compromise.

Requirements

Bachelor's degree in Computer Science, Cybersecurity, Information Security, or related field
3+ years in security operations with demonstrated expertise in: Incident response and forensics; Malware analysis and threat investigation; SOC operations or security monitoring.
Familiarity with how AI and automation are reshaping incident response workflows, from alert triage to forensic analysis.
Advanced Windows and Linux forensics (registry, event logs, artifacts, filesystem analysis).
Experience with forensics tools such as SIFT Workstation, WinPMEM, dd/dclfdd, Autopsy, Volatility Framework, FTK Imagerm, Wireshark, Bro/SiLK, Netflow, tcpdump – or similar OS/Network Tools.
Experience with SIEM platforms, syslog analysis, and event correlation procedures.
Knowledge of static and dynamic malware analysis techniques.
Understanding of threat actor TTPs and MITRE ATT&CK framework alignment; ability to contribute to organizational threat intelligence.
Working knowledge of the Vision One platform or equivalent threat intelligence/XDR platforms.
Strong written and verbal communication, ability to translate complex forensic findings for technical and executive audiences.
Self-directed learner with aptitude for rapidly mastering new tools and threat landscapes.
Comfortable working under pressure; thrives in fast-paced, high-stakes environments.
Ability to work 24/7 rotating shifts, including nights, weekends, and holidays.
Willing to travel when required.
Strong analytical and problem-solving skills with ability to work effectively in a global team environment.
Comfortable speaking to customer via e-mail, chat and phone.
Candidates must be authorized to work in the U.S. without the need for employment-based visa sponsorship, both currently and moving forward.

Nice To Haves

GCIH (GIAC Certified Incident Handler).
GCFA / GCFE (GIAC Certified Forensic Analyst / Examiner).
CISSP or OSCP.

Responsibilities

Conduct root cause analysis of security breaches; determine attack vectors, scope and business impact with precision and accountability.
Lead containment and threat eradication using TrendAI Vision One™, coordinating across internal teams and customer stakeholders from first alert to resolution.
Analyze malware and threat components; develop and refine detection rules; generate threat intelligence and IoCs.
Create executive-ready incident reports; deliver briefings to stakeholders; recommend security improvements.
Hunt for advanced threat indicators across customer networks; improve detection logic and fidelity.
Contribute to automation and AI initiatives that compress response times, reduce analyst burden, and sharpen the overall quality of MDR delivery.