Malware Analyst - Assistant Vice President

About The Position

Requirements

• Proven experience conducting in-depth static and dynamic malware analysis, reverse engineering, and behavioral analysis of sophisticated threats in an enterprise environment
• Hands-on expertise with industry-standard malware analysis tools (e.g., IDA Pro, Ghidra, x64dbg, malware sandboxes, Wireshark, Process Monitor) and methodologies for understanding malicious code
• Proficiency in at least one scripting language (e.g., Python, PowerShell) for automating malware analysis tasks, extracting artifacts, and developing custom analysis tools
• Deep understanding of Windows and Linux operating system internals, memory management, process execution, and network protocols relevant to malware behavior

Nice To Haves

• Proven experience with advanced reverse engineering techniques, including obfuscation bypass, anti-analysis trick identification, and unpacking complex malware
• A strong understanding of the incident response lifecycle, threat actor methodologies (MITRE ATT&CK Framework), and the critical role of malware analysis in containment, eradication, and recovery
• Familiarity with analyzing malware behavior and artifacts in cloud environments (e.g., AWS, Azure, GCP) and understanding cloud-specific threats
• Ability to translate malware analysis findings into actionable threat intelligence, including YARA rules, Snort/Suricata signatures, and comprehensive threat reports
• A bachelor’s degree in computer science, Information Security, or a related field, or equivalent professional experience.
• One or more of the following certifications are highly preferred: GIAC Reverse Engineering Malware (GREM), OSCP, OSCE, or similar advanced malware analysis certifications

Responsibilities

• Conduct in-depth analysis of malware involved in active security incidents, including ransomware, targeted attacks, and advanced persistent threats
• Execute static and dynamic analysis, reverse engineering, and behavioral analysis of sophisticated malware samples across various operating systems (Windows, Linux, macOS)
• Serve as a technical expert during critical security incidents, leveraging malware analysis findings to identify threat actor TTPs, develop containment strategies, and support rapid eradication and remediation efforts
• Articulate basic technical findings from malware analysis into clear and concise documentation, contributing to internal threat intelligence reports for technical peers and supporting broader incident communication
• Enhance and mature the team’s malware analysis capabilities by developing new analytical techniques, automating analysis workflows, creating custom tools, and improving detection signatures (e.g., YARA rules)

Benefits

• A diverse and inclusive environment that embraces change, innovation, and collaboration
• A hybrid working model, allowing for in-office / work from home flexibility, generous vacation, personal and volunteer days
• Employee Resource Groups support an inclusive workplace for everyone and promote community engagement
• Competitive compensation packages including health and wellbeing benefits, retirement savings plans, parental leave, and family building benefits
• Educational resources, matching gift and volunteer programs