Responsibilities*
- Conduct in-depth analysis of various malware alerts and associated events
- Perform both static and dynamic analysis of malware to extract IoCs, identify malware family and take appropriate remedial action
- Proactively respond to and disrupt actions by threat actors, mitigating potential threats
- Perform disk based and memory-based analysis of systems
- Perform real-time analysis and trending of security log data from various security devices and systems
- Execute and improve relevant risk management strategies
Requirements*
Education* -B.E/B.Tech in Computer Science
Certifications If Any*- Not Mandatory
8-12 years
Foundational skills*
- 5+ years of experience ofMalware Dynamic and Statis analysis, Malware reverse engineering
- 5+ years of experience conducting end to end Malware analysis specifically around either Email, Web or Endpoint.
- 5+ years of conducting incident response using commercial products/tools.
- 5+ years of experience in digital forensics
- Knowledge of Assembly language
- Knowledge of C, C#
- Knowledge of Network security
- Determine the purpose of malware, how it operates and what it affects
- Using virtual environments for offline dynamic malware analysis
- Basic knowledge in digital forensics and memory analysis
- Determine if a file executed on a system
- Research used to identify IOCs and malware threat families
- Find origins of malware i.e. hosting IPs/domains
- Understanding of email headers and trace email origins
- Help create/write security tool alerts/detections
- Drive/coordinate projects requiring malware analysis expertise
- Communicate technical outcomes to non-technical partners
- Thorough documentation of findings and actions taken
- Prepare technical reports and executive summaries related to major malware incidents
- Provide management with timely, comprehensive, and accurate updates in both written and verbal form
- Knowledge of current malware tactics and trends
- Knowledge/experience of at least one major cloud services provider (AWS, Azure, GCO) technologies in context of malware controls and malware analysis Experience in encryption/obfuscation and how to reverse engineer the same
- Experience of creating innovative ways to track progression of malware families, infrastructure and campaigns conducted by various threat actors
- Ability to create scripts and other forms of automation.
- Problem solve and make decisions based on evidence
- Basic computer/software troubleshooting skills
Desired skills*
GCIH, GREM, GCFA, CISSP or CCSP desirable
Work Timings* -Any Shift between 06:30 AM to 10:30 PM
Hyderabad, Mumbai