Company Name:

Confidential

Location:

Albuquerque, New Mexico

Approximate Salary:

Not Specified

Job Category:

Computer/IT

Required Experience:

4-6 Years

Required Education:

Bachelor's Degree

Date Posted:

October 30, 2017

R&D Reverse Engineer


Native Moon is seeking a full-time cyber security reverse engineers to conduct malware analysis and develop tools to further the state-of-the-art in reverse engineering. Successful candidates will be independent, critical thinkers skilled in using data to solve analytic problems and adept in conducting cyber incident response under tight deadlines.


On any given day, you may be called on to:


  • Provide subject matter expertise in the detection, analysis and mitigation of malware, trends in malware development and capabilities, and proficiency with malware analysis capabilities;
  • Support the maintenance of malware analysis platforms and toolsets, identify requirements for new malware analysis capabilities, and contribute to the development of new malware analysis tools and techniques;
  • Analyze malware, extracting relevant host and network based indicators;
  • Identify capability of malware and any anchor functions that can be utilized to discover additional activity;
  • Identify notable findings of intelligence value;
  • Maintain and expand knowledge of tools and best-practices in advanced persistent threats; tools, techniques, and procedures (TTPs) of attackers; forensics and incident response;
  • Identify and hunt for related TTPs across all internal/external repositories;
  • Correlate collected intelligence, in order to build upon a larger knowledge base of tracked threat activity;
  • Produce reports detailing attributes and functionality of malware, including indicators that can be used for malware identification/detection, the relationship between a given sample of malware and other known samples/families of malware, and notable features that indicate the origin or sophistication of the malware and its authors;
  • Communicate and collaborate with technical staff supporting all enterprise cyber security functions;
  • Contribute to the development of strategies and architectures for Sandia’s secure cyber environments.


Qualifications


  • Bachelor’s degree in Computer Science/Engineering, Computer Information Systems, Computer Forensics, Mathematics, or a related field plus six years of experience; or Master’s degree in Computer Science/Engineering, Computer Information Systems, Computer Forensics, Mathematics, or a related field plus two years of experience; or PhD in relevant discipline
  • Basic programming and scripting skills (such as .NET, Java, Python);
  • Experience with security solutions and technologies, including Windows, Mac, and Linux network architecture/implementation/configuration;
  • Experience with dynamic and static analysis and tools such as IDAPro and Ollydbg;


Desire Qualifications


  • Existing DOE Q clearance;
  • Graduate degree in Computer Science/Engineering, Computer Information Systems, Computer Forensics, Mathematics, or a related field;
  • Malware analysis/reverse engineering/cyber security experience highly desired;
  • Strong leadership skills with the ability to prioritize and execute in a methodical and disciplined manner;
  • Familiarity with Kill Chain for incident response;
  • Familiarity with security technologies such as IDS, IPS, and HBSS.
  • Strong oral and written communication skills, ability to explain complex ideas clearly and concisely;
  • Familiarity with analyzing disassembly of x86 and x64 binaries;
  • Ability to make decisions on remediation and counter-measures for challenging information security threats;
  • Knowledge of advanced computer exploitation methodologies, two or more analysis tools used in a CSIRT or similar investigative environment, such as EnCase Enterprise or AccessData Forensic Toolkit and demonstrated ability to articulate the processes being conducted by these tools;
  • Ability to conduct analysis of electronic media, network traffic and packet capture, log data, and network devices in support of intrusion analysis or enterprise level information security activities, understand data flows and identify anomalous behavior;
  • Knowledge of packet flow/TCP/UDP traffic, firewall technologies, proxy technologies, anti-virus, spam and spyware solutions


Company Name:

Confidential

Location:

Confidential

Approximate Salary:

Not Specified

Job Category:

Computer/IT

Required Experience:

4-6 Years

Required Education:

Bachelor's Degree

Date Posted:

October 30, 2017

Apply Now