Malware Analyst
Savannah, GA
Applications have closed
ZeroFox
ZeroFox, the leader in external cybersecurity, exposes, disrupts, and responds to threats outside the perimeter.
OPPORTUNITY OVERVIEWZeroFox seeks a Malware Analyst to identify, analyze and mitigate malicious software threats affecting the Public Services Sector (PSS). We are looking for someone to apply their technical knowledge of malware families, associated vulnerabilities, etc, to the research of threat actors.
Equal Opportunity, Diversity & InclusionWe aim to build a team that represents a variety of backgrounds, perspectives, and skills. We embrace inclusion and ensure equal employment opportunity without discrimination or harassment based on race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, military or veteran status, or any other personal characteristic.
Role and responsibilities
- Research malware utilized by threat actors to identify indicators of compromise (IOC), conduct attribution analysis, and assess potential impacts to clients
- Analyze malware and malware-related reporting to assess attribution, TTP, and other pertinent information in line with client information requirements
- Perform research on malware utilized by threat actor groups and provide input to written reports
- Identify IOC and utilize proprietary ZeroFox tools to catalog and assess associated vulnerabilities in networks of interest
- Research malware families and TTP in use by threat actor groups to identify and analyze trends in support of finished intelligence products
Required qualifications and skills
- Experience conducting malware analysis and research, typically obtained in 5+ years
- Background in malware analysis and knowledge of applicable tools and techniques
- General familiarity with threat actor groups and tactics, techniques, and procedures (TTP), such as ransomware gangs, advanced persistent threat groups, cyber crime groups, etc.
- Capable of conveying research and analysis in written formats
- Comfort working in a small team environment with flexibility to engage in multiple processes
- Ability to utilize common malware analysis tools
- Meaningful experience using any combination of the following tool categories: Network Analysis, Suspicious File Analysis/Sandboxing, Reverse Engineering, Programming / Scripting
- Ability to apply malware analysis and research to threat actor activities and articulate findings in written / verbal formats
Desired qualifications and skills
- GIAC Reverse Engineer Malware (GREM) or Certified Ethical Hacker (CEH) or CISSP Certification
- Experience tracking threat actor groups
- Cybersecurity degree with emphasis on Information Assurance or Network Engineering (or equivalent experience)
- Experience working with US government organizations
- High degree of comfort operating on a small team
Benefits
- Competitive compensation
- Community-driven culture with employee events
- Generous time off
- Comprehensive health benefits & 401(k) plan
- Respectful and nourishing work environment, where every opinion is heard and everyone is encouraged to be an active part of the organizational culture
Interested?
- Ready to apply? Visit us at https://www.zerofox.com/careers to find out more and join the best team in the security industry.
- Not ready to apply? Email careers_at_zerofox_dot_com to speak with a member of the team!
Other Information
- This position will report to the Lead, Principal Analyst
- This position may entail up to 5 % travel
- This role will be based out of our office in Savannah, GA (hybrid)
- This role requires occasional work on nights and weekends as needed.
Equal Opportunity, Diversity & InclusionWe aim to build a team that represents a variety of backgrounds, perspectives, and skills. We embrace inclusion and ensure equal employment opportunity without discrimination or harassment based on race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, military or veteran status, or any other personal characteristic.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
26
8
0
Category:
Analyst Jobs
Tags: CEH CISSP Cyber crime GIAC GREM Malware Reverse engineering Scripting Vulnerabilities
Perks/benefits: Career development Competitive pay Health care Team events
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Cloud Security Engineer jobsInformation System Security Officer jobsInformation Security Manager jobsInformation Security Specialist jobsInformation Security Officer jobsSenior Cybersecurity Engineer jobsSenior Network Security Engineer jobsIT Security Engineer jobsCyber Security Specialist jobsSenior Information Security Analyst jobsSystems Engineer jobsSystems Administrator jobsSecurity Consultant jobsSecurity Specialist jobsIT Security Analyst jobsSenior Cyber Security Engineer jobsChief Information Security Officer jobsInformation System Security Officer (ISSO) jobsInformation Systems Security Engineer jobsSenior Penetration Tester jobsThreat Intelligence Analyst jobsStaff Security Engineer jobsSecurity Operations Analyst jobsCyber Threat Intelligence Analyst jobsSenior Product Security Engineer jobs
Encryption jobsJava jobsMalware jobsGDPR jobsSplunk jobsEDR jobsSaaS jobsRMF jobsForensics jobsIDS jobsSDLC jobsSQL jobsBash jobsDoDD 8570 jobsIPS jobsIntrusion detection jobsActive Directory jobsThreat detection jobsFinance jobsGIAC jobsCompTIA jobsCRISC jobsITIL jobsTerraform jobsDocker jobs
OWASP jobsClearance Required jobsSANS jobsHIPAA jobsIndustrial jobsPolygraph jobsCCSP jobsSOC 2 jobsVPN jobsUNIX jobsBanking jobsOSCP jobsAnsible jobsSAP jobsTCP/IP jobsData Analytics jobsDNS jobsIT infrastructure jobsJavaScript jobsSOX jobsNIST 800-53 jobsCISO jobsJira jobsMITRE ATT&CK jobsMachine Learning jobs