Trend Micro Security Analyst – L1/L2

Job Title: Cyber Security Analyst – Trend Micro (L1/L2)Location: BangaloreMode: Work from office (24*7)Budget: L1: 6-7 LPAL2: 10-12 LPAJob Summary:The L1 Cyber Security Analyst will monitor and respond to security events generated by the Trend Micro Deep Security platform. You will be responsible for the initial investigation of alerts related to Intrusion Prevention (IPS), Anti-Malware, Integrity Monitoring, and Log Inspection. Your goal is to identify genuine threats, perform basic remediation, and escalate complex incidents to L2 analysts.The L2 Cyber Security Analyst acts as the escalation point for the L1 SOC team. You will lead the technical response to sophisticated threats targeting the bank's hybrid cloud and on-premise server infrastructure. Your primary focus is minimizing Mean Time to Resolution while maintaining the integrity of the bank’s transaction-processing systems.Key Responsibilities:L1 Responsibilities:Alert Monitoring & Triage: Monitor the Deep Security Manager (DSM) console for security alerts; distinguish false positives from legitimate threats; analyze logs to identify source, target, and nature of attacks.Policy & Agent Management: Monitor Deep Security Agents (DSA), assist with virtual patching, review quarantined files, and follow playbooks for anti-malware response.Incident Response & Escalation: Perform initial containment steps, document alerts processed, and escalate high-risk incidents to Tier 2/Incident Response teams.Reporting & Compliance: Generate compliance reports, review File Integrity Monitoring (FIM) events to track unauthorized changes.L2 Responsibilities:Advanced Threat Investigation & Forensics: Perform deep analysis of escalated alerts, conduct static/dynamic malware analysis, and perform Root Cause Analysis (RCA) for confirmed incidents.Strategic Policy & Infrastructure Management: Develop custom IPS and Log Inspection rules, enforce micro-segmentation, manage DSM, DSR, and database performance.Compliance & Virtual Patching Leadership: Lead virtual patching strategy, analyze vulnerability scan reports, and provide granular reports for audits (PCI-DSS, RBI).Required Skills & Qualifications:Hands-on experience with Trend Micro Deep Security Manager (DSM) and Deep Security Agents (DSA). Experience with Trend Vision One / XDR is highly preferred.Knowledge of IPS/IDS, Firewalls, Anti-Malware, Web Reputation, and Log Inspection modules.Basic understanding of Windows/Linux OS and cloud platforms (AWS, Azure, GCP).Familiarity with TCP/IP, DNS, HTTP/HTTPS, and common port behaviors.Expert-level knowledge of DSM, DSA, DSR architecture, and Trend Vision One/XDR (for L2 roles).Scripting & automation skills using Python or PowerShell (L2 preferred).Soft Skills:Attention to detail to spot anomalies in high-volume log data.Clear written and verbal communication for incident reporting and handovers.Problem-solving ability to follow logic-based playbooks.Familiarity with banking protocols and hybrid cloud security (for L2 roles).Email - kirti.rustagi@

Apply Now