Malware Analyst SME

Quantico, VA

Apply now Apply later

Sentar is dedicated to developing the critical talent that the connected world demands to create solutions to address the convergence of cybersecurity, intelligence, analytics, and systems engineering. We invite you to join the small business team where you can build, innovate, and secure your career.

Sentar is seeking a Malware Analyst SME in Quantico, VA!

Role Description:

Sentar is seeking a Malware Analyst SME to support an active government contract providing Cyber Security Service Provider (CSSP) functions. This position will support the government's mission to disrupt, deny and degrade network adversaries’ ability to disrupt the IT services provided to network users.

The Contractor will provide staff to conduct analysis of digital evidence to support computer security incidents to derive useful information in support of system/network vulnerability mitigation. Contractor staff will support incident investigation by employing appropriate techniques in Surface Analysis, Runtime Analysis, and Static Analysis of suspected malware. The Contractor shall adhere to the procedures outlined in CJCSM 6510.01B, “Cyber Incident Handling Program,” dated 10 Jul 2012 or later for disk/drive image dissection. Additionally, the Contractor shall support the development of new detection capability by integrating the results of malware and forensic analysis tasks into new and existing detection use cases in order to prevent future occurrences. The Contractor is responsible for maintaining currency as data sources, analysis tools, and techniques evolve to changes in the technical computing environment as well as by mandates from higher echelon organizations.

Qualifications:

  • Bachelor’s Degree in Computer Science or IT related field or at least five years of demonstrated experience with DCO tools, tactics, and techniques in a large enterprise environment.
  • At least five years of experience performing malware analysis.
  • Possess DoDD 8570 IAT Level III certification. (CASP+, CCNP Security, CISA, CISSP, GCED, GCIH, CCSP)
  • Possess DoDD 8570 CSSP Incident Responder certification. (CEH, CFR, CCNA Cyber Ops, CCNA-Security, CHFI, CySA+, GCFA, GCIH ,SCYBER, PenTest+)
  • GIAC Reverse Engineering Malware (GREM) or equivalent industry certification within 180 days of start.
  • Experience handling national state level intrusions.

Additional Responsibilities:

  • Perform technical analysis or malicious binaries through controlled execution and/or static analysis of assembly code, overcoming techniques designed to defeat analysis, to ascertain functionality, capability, call-backs, assist with attribution to adversary infrastructure, and identification of indicators of compromise.
  • Write and produce high quality technical reports related to the scope, nature, and characteristics of malicious software suitable for distribution to both technical and non-technical audiences.

Additional Skills:

  • Experience with malware analysis using static and dynamic analysis tools, including disassemblers, debuggers, and virtual machines.
  • Experience with monitoring threats through Tools, Techniques, and Procedures and how they relate to the MITRE ATT&CK framework.
  • Experience with Windows internals such as the Windows Application Interface (APIs), processes, threads, and the registry.
  • Experience with Linux and comfortable traversing the terminal.
  • Knowledge of common attacker methodologies and exploit techniques.
  • Knowledge of network protocols and networking concepts.
  • Knowledge of x86 and x64 instruction set architectures
  • Ability to analyze shellcode, packed and obfuscated code.

Clearance Level: TS/SCI

Benefits at Sentar:

In addition to a great culture, Sentar not only fosters an inclusive work environment but also offers an extensive benefits package designed to cater to the well-being of its employees and their families.

  • Voluntary Medical, Dental, Vision, with Health Savings or Flexible Spending Plan options
  • Voluntary Life, Critical Illness, Accident, and Long Term Care insurance options
  • Group Term Life, Short-Term and Long-Term Disability is provided by Sentar to all qualifying employees
  • Generous 401(k) match
  • Competitive PTO plan that graduates quickly with years of service
  • Other leave programs; holiday schedule along with bereavement, jury and military duty
  • Mental health awareness programs
  • Tuition reimbursement
  • Professional development reimbursement
  • Recognition and Awards programs

If you are not ready to apply for this position, submit your resume here to join our talent community. We'll keep you updated occasionally on new job opportunities.

Sentar is an Affirmative Action and Equal Opportunity Employer M/F/Vets/Persons with Disabilities

Our culture is one of inclusivity and support. Sentar is proudly an Equal Opportunity and VEVRAA Federal Contractor Employer M/F/Vets/Persons with Disabilities. Follow these links to learn more about your rights: EEO Is the Law Poster; EEO Is Law Supplement; and Pay Transparency.

We want you to build your career at Sentar, so if you are an individual with a disability and require a reasonable workplace accommodation applying for a job or at any point in the employment process, contact the Recruiting Manager at recruiting@sentar.com. Please indicate the specifics of the assistance needed. Thank you for considering Sentar in your employment search.

Build, Innovate, Secure Your Career at Sentar.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  6  2  0
Category: Analyst Jobs

Tags: Analytics APIs CASP+ CCNP CCSP CEH CHFI CISA CISSP Clearance Computer Science DCO DoDD 8570 Exploit GCED GCFA GCIH GIAC GREM Linux Malware MITRE ATT&CK Monitoring Reverse engineering TS/SCI Windows

Perks/benefits: 401(k) matching Career development Competitive pay Flex hours Flex vacation Health care Insurance Medical leave

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.