Cyber Team Six Malware Analysis Engineer

Location: Arlington, Virginia

Job Description

The Security Malware Reverse Engineer evaluates the tools deployed in cyber-attacks as well as the tactics, techniques and procedures used by cyber-criminal. Research the latest malware families, malware distribution techniques such as exploit kits and phishing campaigns, botnets, develop tools, conduct independent research, perform detailed malware analysis, analyze cyber threat data, create intelligence reports, and provide support to customer requests.

Duties and Responsibilities

  • Analyze daily phishing email campaigns and malicious indicators
  • Reverse engineer malware samples, builders, and panels
  • Extract malware configuration files and IOCs
  • Write technical reports on malware, phishing campaigns, and cyber-attacks
  • Leverage commercial and open source tools for reverse engineering
  • Perform network enumeration and intelligence pivoting to expand findings
  • Provide support to customers’ analysis requests

Desired Certifications

  • Relevant certifications Certified Reverse Engineering Analyst (CREA), GIAC Reverse Engineering Malware (GREM)
  • Experience in hardware reverse engineering
  • Experience with data recovery tools (PC-3000) and techniques
  • Experience performing low-level data extraction (JTAG, chip-off, etc.)

Requirements & Qualifications

Education:

  • Bachelor’s degree in Computer Science or Information systems – OR –
  • Minimum ten (10) years of relevant professional experience

Experience/Qualifications:

  • A Minimum of three (3) years of experience in malware analysis and reverse engineering
  • A Minimum of five (5) years of experience using programming and scripting languages: Python, Java, JavaScript, C, C++, etc
  • Minimum of three (3) years of experience with computer forensics and malware analysis tools
  • Familiarity with mitigation strategies and signatures such as Snort and YARA
  • Minimum of three (3) years of experience with incident response, network defense, and threat intelligence
  • Understanding of operating system internals and Windows API
  • Ability to recognizes potential, successful, and unsuccessful intrusion attempts and compromises thorough reviews and analyses of relevant event detail and summary information
  • Experience performing software and malware reverse engineering, forensic investigations, cyber security incident response, with specific experience conducting software and malware reverse engineering investigation
  • Demonstrated experience using Commercial (IDA Pro, Hex-Rays, WinDbg, etc.) and Open Source (OllyDbg, Radare, GDB, etc.) tools and methods to perform software and malware reverse engineering investigations
  • Knowledge of malware packers, obfuscation techniques, and exploit kits
  • Ability to analyze and unpack obfuscated code
  • Excellent English written and verbal communication skills
  • Ability to produce detailed and concise reports
  • Ability to maintain integrity in all transactions; follows up and keeps promises; maintains ethical standards of clients
  • Ability to effectively adapt to new requirements; comfortable with complexity, ambiguity and change
  • Ability to be a team player, work well under pressure to rapidly generate highly accurate technical reports
  • Ability to be a self-starter, quick learner, and detail-oriented
  • Ability to multi-task and work independently on moderate to complex assignments using independent professional discretion and judgment as well as transition quickly between projects with minimal supervision
  • Ability to recognize and deal appropriately with confidential and sensitive information

Additional Requirements

  • US Citizen (REQUIRED)
  • Ability to pass a Background Check – AND – Drug Test (REQUIRED)
  • Ability to obtain Secret/TS clearance at the request of the Gov.

Message from the CEO

“CyberSponse is a company built on trust, loyalty and honor. The management team truly cares about each team member of the Company and are very protective and selective of extending offers to new hires. We are all driven to maintain a culture that enables you to perform your best work, grow your professional and personal skills allowing you to fulfill your goals and career objectives. We are also confident you will also make some good friends along the way too. You will see that we care for and protect our team members, their families, their financial security, and determined to help each of our team improve their way of life. We believe that without loyalty a team or individual cannot be successful. We look forward to continuing our process to see if this is a good fit for both parties.” – Larry Johnson

Apply

If you are interested in this opportunity and would like to learn more, please contact CyberSponse Human Resources, with a current resume and cover letter at HR@CyberSponse.com

About CyberSponse

CyberSponse provides an enterprise-grade secure platform using innovative technology to increase response efficiency with cyber security tools, as well as management of response team’s daily activities. CyberSponse’s Automation platform incorporates a proprietary embedded collaboration technology designed to create, test and manage efficient response automated plans. The CyberSponse platform is the only solution of its kind in the market, operating with enterprise customers and on a very fast growth trajectory. Our vision is to make the solution easy to use and by integrating legacy technology systems together through our robust API connectivity ensures it is not just another cyber security but the central nervous system of the entire network.