The Consulting Services team requires a malware analyst to support a growing caseload in our security consulting business. The analyst will be responsible for examining malicious code to understand the nature of its threat in the context of digital forensics investigations. This sometimes involves reverse-engineering a compiled executable and examining how it interacts with its environment. The analyst will work with other team members to document capabilities of executables, understand how they maintain persistence and propagation, and define signatures for detecting its presence. While the analyst's work will be technical in nature, the analyst must be proficient in simplifying technical concepts in order to advise colleagues and customers on the best course of action.
As a malware analyst on Clients Threat Research Advisory Center team, you will balance the demands of supporting network forensic field consultants, performing malicious code analysis, reverse engineering, and managing evidence from forensic and other security-related engagements. You will be responsible for integrity in analysis, quality in client deliverables, and the security of evidence and lab systems.
Proficiency with scripting languages, developing code, and maintaining a lab environment is essential.
You Must Have:
Experience with scripting (e.g., python, perl) and programming (e.g., Java, C, C++)
The ability to work outside of normal working hours (evenings and weekends) if needed
Malcode analysis skills
Experience with reverse engineering applications such as Ghidra or IDA
Even Better if You Also Have:
Experience developing software applications and scripting
Network forensic analysis experience (e.g. PCAPS, logs)
Experience with system administration
Network configuration, optimization, and troubleshooting skills
Experience with Linux, Windows, and macOS operating systems
An understanding of information security, network architecture, database concepts, and virtualization solutions.
The ability to work extremely well under pressure while maintaining confidentiality and a professional image
The ability to communicate effectively verbally and in writing
The ability to successfully manage multiple projects on a daily basis
The ability to work as part of a team and to absorb knowledge on the fly
InfoSec certifications (e.g., CompTIA, SANS)
IT certifications (e.g., Microsoft, Cisco, Linux)
•
Last updated on May 30, 2023