Cyber Security Analyst/Malware Analyst

Perimeterwatch New York , NY 11106

Posted 7 months ago

Job Description

Job Title:

Cyber Security Analyst/Malware Engineer



Job Description:

Perimeterwatchs Security Team is currently seeking multiple skilled Security/Malware Analysts capable of analyzing threads and Reverse Engineering malware. Analysts will perform advanced analysis of malicious code and their capabilities. You will provide cyber threat and intelligence analysis, and develop related reports. You will also develop and maintain subject matter expertise of Advanced Persistent Threats and assist with Incident Response efforts. In addition you will be involved in designing advanced analytics and countermeasures to protect critical assets from threats. Analysts will be responsible for incident handling, response combat tactics and operations necessary to deter attacks.

Basic

Requirements:

  • In-depth understanding of low level programming in C, C++/Assembly (x86.)

  • In-depth understanding of the Python language

  • Solid experience performing static analysis of malware using IDA Pro/Ollydbg and other disassembler/debugging tools to determine functionality.

  • Experience with Windows system programming, driver development and/or IDA Python

  • Deep understanding of the Linux OS

  • Mobile IOS/Android experience

  • Experience with DShell

  • Experience developing software applications

  • An understanding of information security, network architecture, database concepts, document management, hardware and software troubleshooting, Microsoft Office applications, and virtualization solutions



    Required Qualifications:

  • BA/BS degree in Information Technology or Information Security, Computer Science, Intelligence Studies, Cyber Security or another related field of study or equivalent 3+ years performing technical cyber threat intelligence analysis.

  • Ability to reverse engineer binaries of various types including: x86, x64, C, C++, .NET, and Delphi

  • Understanding of x86, ARM, and x64 architectures

  • Capable of Python scripting to automate analysis and reverse engineering tasks

  • Strong knowledge of tools used for malware analysis such as debuggers and disassemblers

  • Strong understanding of Windows Operating System Internals and Windows APIs

  • Ability to analyze shellcode; packed and obfuscated code and the associated algorithms

  • Understanding of common attacker methodologies and exploit techniques

  • Understanding of network protocols and networking concepts

  • Strong initiative, problem solving and critical thinking skills

  • Experience on a Computer Incident Response Team (CIRT), Computer Emergency Response Team (CERT), Computer Security Incident Response Center (CSIRC) or a Security Operations Center (SOC).

    Experience

  • Experience analyzing streams from SIEM/SIM/SEM tools including Qradar/AlienVault et.al

  • RSA Security Analytics / Net Witness

  • Splunk, including Splunk for Enterprise Security

  • RSA Archer

  • SourceFire/FirePower/Snort

  • McAfee ePO, HIPS

  • FireEye NX, EX, HX et.al

Company Description

Cyber Security Experts
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Security Analyst

Instinet Group, LLC

Posted Yesterday

VIEW JOBS 11/17/2018 12:00:00 AM 2019-02-15T00:00 About Instinet: As the agency-model execution services arm of the Nomura Group, Instinet Incorporated subsidiaries provide brokerage services to clients in over 65 markets around the world. Through its advanced suite of electronic trading strategies, experienced high-touch trading group, top-ranked Commission Management services, award-winning desktop trading platform, and unparalleled access to insightful analytics, content and unique liquidity, Instinet helps institutions lower overall trading costs and ultimately improve investment performance. In the US, Instinet also offers a boutique-model Equity Research offering to assist their clients in the pursuit of alpha generation in a changing landscape. Over the course of its 45+ year history, Instinet has introduced a range of now industry-standard trading technologies, and has been an innovator at the forefront of the market's evolution. For more information, please visit www.instinet.com. Role description: * The analyst performs monitoring, research, assessment and analysis on Intrusion Detection and Prevention tools as well as Anomaly Detection systems, Firewalls, Antivirus systems and proxies. * Follow pre-defined actions to handle BAU and High severity issues including escalating to other support groups Execute daily adhoc tasks or lead small/medium projects as needed. * Respond to tier 3 SOC tickets and manage security incidents. * Create and maintain operational reports for Key Performance Indicators and weekly and Monthly Metrics * Perform initial risk assessment on new threats and vulnerabilities, perform assessment phase of Vulnerability and Threat Management process * Performs assessment as well as troubleshooting and help isolate issues with IDS/IPS sensors, Antivirus servers, Vulnerability scanners. * Support other teams on dealing with security incidents. * Perform forensic activities within Incident Response process. * Coordinate SOC related projects and activities. * Engage with other teams to improve the security monitoring process. * Continue improvement of security practices within the company through lessons learned process. Qualifications * 5+ years working in the information security field. * 2+ years working in security operations field. * 2+ years performing Vulnerability Assessment. * 2+ years working in finance area is an advantage. * Excellent knowledge of Intrusion Detection (deep TCP/IP knowledge, and Cyber security), various operating systems (Windows/UNIX), and web technologies (focusing on Internet security) * Practical exposure with SIEM Systems and its integration with security products * Ability to read and understand packet level data Intrusion detection and prevention and Network Security Products (IDS/IPS, firewalls, etc) Host Security Products (HIPS, AV, scanners, etc) * Practical experience to execute Vulnerability Assessment, Network Scanning, Vulnerability/Risk Management. * Exposure on Threat Modeling and forensic analysis fields are an advantage. * Certifications from GIAC, (ISC) are preferred [CISSP, SSCP, GCIA,GPEN ] Instinet is an Equal Opportunity Employer © Instinet Incorporated and its subsidiaries. All rights reserved. INSTINET is a registered trademark in the United States and other countries throughout the world. * Financial Disclosure Information * Legal & Regulatory * Terms & Conditions Instinet Group, LLC New York NY

Cyber Security Analyst/Malware Analyst

Perimeterwatch