MyPage is a personalized page based on your interests.The page is customized to help you to find content that matters you the most.


I'm not curious
6

Malware Cyber Analyst

Location Reston, United States
Posted 29-September-2021
Description

BAE Systems, Inc. is searching for a Senior Malware Cyber Analyst to Perform triage analysis of malware samples, provide malware family identification, and write and tune Yara signatures to identify and discover malware.

Monitor for new malware samples using subscription services and Support Security Operations by providing timely report of relevant malware indicators for intrusion detection. Support forensic operations/endeavors.

Technical requirements:

Write signatures for endpoint detection/protection platforms (EDR/EPP)Create content in SIEM for host-based signature detectionMonitor SIEM tool for host-based signature detection; tune and escalate accordinglyWrite custom scripts to deobfuscate, decode and automate analysis processProduce accurate, high-quality, evidence-based reports and presentationsWorking understanding of the Lockheed Martin Cyber Kill Chain Incident ResponseIntrusion AnalysisForensic AnalysisEligible to obtain/maintain a security clearance at the Secret level

Typical Education and Experience:

6+ years work experience preferredGIAC Reverse Engineering Malware [GREM] (or equivalent)Experience with x64dbg, Ollydbg, IDA ProExperience with setting up a malware analysis lab (VMs, tools, etc.)Experience working on a reverse engineering team or a security operations centerNo degree required

Required Skills:

Malware Reverse Engineering, Disassembly, and DebuggingAbility to perform both Behavioral/Dynamic and Static malware analysisProficiency with open-source malware analysis toolsExtensive experience with Windows operating system internalsExperience analyzing PE and comfortable working with various file types such as macros, .NET, Delphi, and C/C++-based programsAbility to review and interpret host-based alertingExperience with Endpoint Detection & Response (EDR) productsExperience with Endpoint Protection Platform (EPP) productsMalware classification/detection with Yara

Preferred Skills and Education:

Experience with ELF file format and Linux OS internalsExperience with analyzing both commodity and nation-state malwareFamiliar with malware families (eg PoisonIvy, Gh0st RAT)GREM/GCFE/GCFA (or equivalent)Python/Perl/PowerShell ScriptingEnCEAbility to read and interpret PCAPFireEye Endpoint Protection (HX) experienceMcAfee Access Protection (MCAP) experienceCREA

 
Awards & Accolades for MyTechLogy
Winner of
REDHERRING
Top 100 Asia
Finalist at SiTF Awards 2014 under the category Best Social & Community Product
Finalist at HR Vendor of the Year 2015 Awards under the category Best Learning Management System
Finalist at HR Vendor of the Year 2015 Awards under the category Best Talent Management Software
Hidden Image Url