Malware Engineering Analyst
SkyePoint Decisions
- Rosslyn, VA
- Permanent
- Full-time
- Provide Subject Matter Expert (SME) level malware analysis support in a 24x7x365 environment.
- Share in-depth knowledge and intelligence gained from cyber security events with stakeholders.
- Protect against and prevent potential cyber security threats and vulnerabilities.
- Provide SME level response, technical assistance and expertise for significant cyber incidents, investigations and related operational events.
- Develop and implement training programs for malware analysts.
- Conduct detailed research to increase awareness and readiness levels of the security operations center.
- Conduct advanced analysis and recommend remediation steps.
- Publish after-action reports, cyber defense techniques, guidance, and incident reports.
- Review, draft, edit, update and publish cyber incident response plans.
- Bachelor’s Degree and a minimum of 11 years’ experience or Master's Degree and 9 years of experience is required. An additional 4 years of experience may be used in lieu of degree.
- Ability to obtain Top Secret security clearance is required, can join with a Secret clearance.
- Must be able to work an onsite schedule at both Beltsville MD and Rosslyn, VA.
- Ability to resolve highly complex malware and intrusion issues using computer host analysis, forensics, and reverse engineering.
- Ability to recommend sound counter measures to malware and other malicious type code and applications which exploit customer communication systems.
- Experience in the development of policies and procedures to investigate malware incidents for the enterprise network.
- Experience handling national state level intrusions.
- Experience with evidence custody and control procedures.
- Experience with Debuggers, Disassemblers, Unpacking Tools, and Binary analysis tools.
- Experience with static and dynamic malware analysis tools and techniques.
- Knowledge of IOCs and APT threat actors.
- Demonstrated knowledge of the Incident Response Lifecycle.
- Demonstrated ability to utilize and leverage forensic tools to assist in determining scope and severity of a cybersecurity incident.
- Ability to identify remediation steps for cybersecurity events.
- Strong organizational skills.
- Proven ability to operate in a time sensitive environment.
- Proven ability to communicate orally and written.
- Proven ability to brief (technical/informational) senior leadership.
- Must be a US citizen
- Must have one of the following certifications:
- CASP+ CE
- CCISO
- CCNA Cyber Ops
- CCNA-Security
- CCNP Security
- CEH
- CFR
- CISA
- CISM
- CISSP (or Associate)
- CISSP-ISSAP
- CISSP-ISSEP
- Cloud+
- CySA+
- GCED
- GCIA
- GCIH
- GICSP
- GSLC
- SCYBER
- Knowledge of host and network forensic analysis.
- Knowledge of high and low level programming.
- Knowledge of network, architecture, design and security.
- Knowledge of system design and process methodologies.
- Experience in developing and delivering comprehensive training programs.
- Experience collaborating with cross functional teams.
- Experience working in the inter-agency environment.
- Ability to communicate technical concepts to executive level leadership.
- At SkyePoint, we go B.I.G. (beginning in GRATITUDE) by recognizing all we have and giving back to our employees, families, and communities. It instills a positive mindset that permeates all we do. By beginning in gratitude, SkyePoint can continue to spread living in gratitude each day.
- Great Benefits: Several insurance options including HMO and High Deductible plans with Health Savings Accounts [HSAs], Flex Spending Accounts [FSAs], Full Dental Plans, ST/LT Disability, Life Insurance, floating federal holiday options, and 401k matched
- Certificate Incentive Program: To promote professional development, we recognize and reward employees who obtain new certifications aligned with business needs.
- SkyePoint DoD SkillBridge Industry Partner Fellowship Program
- Flexible Work Environment