Job Description

Role Purpose

The L1 Trend Micro Antivirus Engineer is responsible for monitoring, basic troubleshooting, and operational support of Trend Micro endpoint security solutions. The role involves responding to alerts, ensuring signature/agent updates, performing initial diagnosis, and escalating issues to L2/L3 teams when required.

# **Key Responsibilities**

## **1. Monitoring & Daily Operations**

*   Monitor **Trend Micro Apex One / OfficeScan / Deep Security** dashboards for:
    *   Out-of-date patterns/signatures
    *   Agent offline or unreachable
    *   Malware detections
    *   Policy non-compliance
*   Track real-time alerts, suspicious activity notifications, and infected endpoints.

## **2. Antivirus Updates & Compliance**

*   Ensure clients receive latest:
    *   Pattern/Signature files
    *   Engine updates
    *   Security agents
*   Validate update distribution from server to endpoints.
*   Maintain daily/weekly AV compliance checks across server and workstation fleets.

## **3. Threat Handling**

*   Perform initial triage of:
    *   Malware detections
    *   PUA detections
    *   Ransomware-related alerts
*   Isolate infected endpoints as per runbook.
*   Collect required logs/screenshots before escalating incidents.

## **4. Basic Troubleshooting**

*   Troubleshoot common L1-level issues:
    *   Agent not reporting / offline
    *   Pattern update failures
    *   Service not running
    *   Policy not applied
    *   Installation failures
*   Reinstall/repair Trend Micro agents as per SOP.

## **5. Incident & Change Management**

*   Log incidents in ITSM tools (ServiceNow, Remedy, etc.).
*   Perform activities as per approved change tickets (policy updates, reboots, reinstalls).
*   Provide proper documentation while escalating issues to L2/L3.

## **6. Reporting**

*   Generate and share periodic reports:
    *   AV compliance
    *   Threat summary
    *   Signature update status
    *   Endpoint coverage
*   Maintain logs of actions taken during security events.

## **7. Coordination & Communication**

*   Coordinate with endpoint owners for:
    *   Reboots
    *   Manual scans
    *   Agent installations
*   Communicate critical security alerts to stakeholders and higher support tiers.

## **8. Documentation**

*   Update SOPs, troubleshooting steps, and known issue documentation.
*   Maintain accurate asset and endpoint security records.

***

# **Required Skills & Experience**

## **Technical Skills**

*   Familiarity with Trend Micro solutions such as:
    *   **Apex One / OfficeScan**
    *   **Deep Security (DSA/DSM)**
    *   **Deep Discovery Inspector** (basic awareness)
*   Basic understanding of:
    *   Endpoint security concepts
    *   Malware types and common infections
    *   Network basics (ports, firewall issues)
    *   OS administration (Windows/Linux – basic)

## **Soft Skills**

*   Good communication skills.
*   Ability to follow SOPs and runbooks accurately.
*   Strong attention to detail and analytical ability.

## **Experience**

*   0.6 to 2 years in IT security operations or endpoint management.
*   Exposure to Trend Micro products preferred; training can be provided.

***

# **Shift Requirements**

*   Willing to work in rotational shifts, including weekends during security events or maintenance windows.

͏

͏