Job Description

Cybersecurity Engineer, Senior

Key Role
Perform duties as a Cybersecurity Analyst, specializing in both malware and host-based forensic analysis. Conduct static and behavioral analysis on potentially malicious files, including binaries, weaponized MS Office, PDF files, and malicious code. Work with a variety of binary analysis tools, with the goal of identifying the behavior of the malware, as well as developing actionable indicators of compromise (IOCs), such as network traffic, C2 domains, dropped files, and registry keys. Perform host-based forensics analysis of potentially compromised systems using industry standard tools to determine compromise timelines and associated system vulnerabilities. Interface with other team members, client staff, planners and operators, providing subject matter expertise in topics relating to defensive cyber operations. Communicate technical information to non-technical audiences. Produce reports relating to malware analysis, cyber threats and adversary TTPs.

Basic Qualifications

-3+ years of experience with performing malware and host-based forensic analysis

-3+ years of experience with tools, including debuggers, decompilers, static, dynamic, and memory analysis tools, such as Ida Pro, x64dbg, and Volatility

-3+ years of experience with host-based forensics tools, such as X-ways and Axiom

-Knowledge of big data tools, such as Kibana and Arkime to assist in the detection of malicious system activities in both real-world systems and during threat hunting exercises

-Ability to extract indicators of compromise from malicious files, and suggest detection and mitigation strategies

-Ability to write reports documenting the results of malware and host-based forensic analysis and relevance to the client's mission

-TS/SCI clearance

-HS diploma or GED

Additional Qualifications

-Experience with working with DoD Civilians, military, and government contractors

-Experience with software development or scripting using Python, Powershell, Batch, HTML, or C/.NET

-Knowledge of both CPT and Air Force DCO platforms, tools, and operations

-Possession of excellent verbal and written communication skills

-BA or BS degree

-GIAC Reverse Engineering Malware (GREM), GIAC Certified Forensic Examiner (GCFE), or GIAC Certified Forensic Analyst (GCFA) Certification

Clearance:

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance is required.

Were an EOE that empowers our peopleno matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristicto fearlessly drive change.