Threat Center
We designed the investigation platform to enable internal operations team to deliver Managed Detection and Response (MDR) services, including 24/7 monitoring, alert correlation, threat hunting, and investigations.
Role
UX Designer
Role
UX Designer
Role
UX Designer
Service
UX design, Design research
Service
UX design, Design research
Service
UX design, Design research
Year
2018-2019
Year
2018-2019
Year
2018-2019
DISCOVER
DISCOVER
DISCOVER
With attackers growing more sophisticated, enterprises face a pressing need for advanced detection and response capabilities. Many in-house IT teams lack the expertise for thorough threat investigation, leaving critical gaps in security operations. To understand these challenges, we conducted stakeholder interviews and internal workshops, mapping pain points and aligning on the strategic goals for delivering an effective MDR service.
With attackers growing more sophisticated, enterprises face a pressing need for advanced detection and response capabilities. Many in-house IT teams lack the expertise for thorough threat investigation, leaving critical gaps in security operations. To understand these challenges, we conducted stakeholder interviews and internal workshops, mapping pain points and aligning on the strategic goals for delivering an effective MDR service.
With attackers growing more sophisticated, enterprises face a pressing need for advanced detection and response capabilities. Many in-house IT teams lack the expertise for thorough threat investigation, leaving critical gaps in security operations. To understand these challenges, we conducted stakeholder interviews and internal workshops, mapping pain points and aligning on the strategic goals for delivering an effective MDR service.
DEFINE
DEFINE
DEFINE
Unlike traditional product projects, this offering is a service provided by Trend Micro’s global operations team. In the early stage, we hosted an internal Value Proposition workshop to align core values across stakeholders. Our outputs included research materials and frameworks for external validation, ensuring that the MDR service addressed real operational gaps while staying on course with the company’s strategic objectives.
Unlike traditional product projects, this offering is a service provided by Trend Micro’s global operations team. In the early stage, we hosted an internal Value Proposition workshop to align core values across stakeholders. Our outputs included research materials and frameworks for external validation, ensuring that the MDR service addressed real operational gaps while staying on course with the company’s strategic objectives.
Unlike traditional product projects, this offering is a service provided by Trend Micro’s global operations team. In the early stage, we hosted an internal Value Proposition workshop to align core values across stakeholders. Our outputs included research materials and frameworks for external validation, ensuring that the MDR service addressed real operational gaps while staying on course with the company’s strategic objectives.
DESIGN
DESIGN
DESIGN
The Threat Investigation Center brings together log aggregation, heuristic analysis, and essential investigation tasks like sweeping and sample collection. With data coming from multiple Trend Micro products, the platform is inherently complex.
Our challenge was to simplify the interface, create consistent usage flows, and focus on presenting analytic results clearly. We also designed UI solutions for API errors to ensure a smooth and reliable investigation experience, making complex operations feel intuitive for users.
The Threat Investigation Center brings together log aggregation, heuristic analysis, and essential investigation tasks like sweeping and sample collection. With data coming from multiple Trend Micro products, the platform is inherently complex.
Our challenge was to simplify the interface, create consistent usage flows, and focus on presenting analytic results clearly. We also designed UI solutions for API errors to ensure a smooth and reliable investigation experience, making complex operations feel intuitive for users.
The Threat Investigation Center brings together log aggregation, heuristic analysis, and essential investigation tasks like sweeping and sample collection. With data coming from multiple Trend Micro products, the platform is inherently complex.
Our challenge was to simplify the interface, create consistent usage flows, and focus on presenting analytic results clearly. We also designed UI solutions for API errors to ensure a smooth and reliable investigation experience, making complex operations feel intuitive for users.
To enhance data readability and reduce eye strain, we switched from a light to a dark theme. When users drill down into a specific case, they can view a clear attack summary and create follow-up investigation tasks.
To enhance data readability and reduce eye strain, we switched from a light to a dark theme. When users drill down into a specific case, they can view a clear attack summary and create follow-up investigation tasks.
To enhance data readability and reduce eye strain, we switched from a light to a dark theme. When users drill down into a specific case, they can view a clear attack summary and create follow-up investigation tasks.
Created an Alert Rules management page, enabling users to define query criteria and configure related details.
Created an Alert Rules management page, enabling users to define query criteria and configure related details.
Created an Alert Rules management page, enabling users to define query criteria and configure related details.
Leverage the platform’s rich data to create and track customized metrics for users.
Leverage the platform’s rich data to create and track customized metrics for users.
Leverage the platform’s rich data to create and track customized metrics for users.
Built on an agile methodology with monthly releases, I collaborated closely with product and project managers to define a clear yearly roadmap. This allowed me to plan both long- and short-term research with the team. While scheduling sometimes required compromises on ideal solutions, I documented all UX gaps in the product backlog and tracked them continuously.
Built on an agile methodology with monthly releases, I collaborated closely with product and project managers to define a clear yearly roadmap. This allowed me to plan both long- and short-term research with the team. While scheduling sometimes required compromises on ideal solutions, I documented all UX gaps in the product backlog and tracked them continuously.
Built on an agile methodology with monthly releases, I collaborated closely with product and project managers to define a clear yearly roadmap. This allowed me to plan both long- and short-term research with the team. While scheduling sometimes required compromises on ideal solutions, I documented all UX gaps in the product backlog and tracked them continuously.
DELIVER
DELIVER
DELIVER
In May 2018, Managed Detection and Response (MDR) services were launched globally. Since July, Trend Micro’s MDR operations team has served over ten enterprise customers, with numbers continuing to grow. Each release has been informed by both qualitative and quantitative research.
Qualitative Research
I conducted job shadowing and interviews with our operations team in Dallas to uncover pain points, gather feedback, and understand requirements.
Quantitative Research
We implemented tracking codes on the console to capture user behavior data. These insights allowed me to continuously refine the design, ensuring the platform delivers meaningful and impactful solutions.
In May 2018, Managed Detection and Response (MDR) services were launched globally. Since July, Trend Micro’s MDR operations team has served over ten enterprise customers, with numbers continuing to grow. Each release has been informed by both qualitative and quantitative research.
Qualitative Research
I conducted job shadowing and interviews with our operations team in Dallas to uncover pain points, gather feedback, and understand requirements.
Quantitative Research
We implemented tracking codes on the console to capture user behavior data. These insights allowed me to continuously refine the design, ensuring the platform delivers meaningful and impactful solutions.
In May 2018, Managed Detection and Response (MDR) services were launched globally. Since July, Trend Micro’s MDR operations team has served over ten enterprise customers, with numbers continuing to grow. Each release has been informed by both qualitative and quantitative research.
Qualitative Research
I conducted job shadowing and interviews with our operations team in Dallas to uncover pain points, gather feedback, and understand requirements.
Quantitative Research
We implemented tracking codes on the console to capture user behavior data. These insights allowed me to continuously refine the design, ensuring the platform delivers meaningful and impactful solutions.
