Sr. security researcher

Posted: Aug. 24, 2020, 9:16 a.m. - Full Time - Bangalore

Role Overview:

Malware Analysis and Detection

  • Awareness of threats around the globe, regional threats and top adversaries / criminal groups focusing on malware including affiliate networks
  • Exploits, ROP chains, Buffer overflow Protection, network intrusion inspection
  • Process incoming requests from customers and Support team regarding malware analysis and detection
  • Provide an analysis for sophisticated threats including the full attack chain - infection, propagation, lateral movement, exploitation POCs, etc
  • Be able to extract malicious patterns from an object and author effective detection rule

Malware Incident Handling

  • Participate in the incident response process on need basis
  • Provide fast and thorough analysis of the attack chain including infection vector, payload, propagation, etc.
  • Support clear and concise communications during malware incidents
  • Prepare analysis of an incident, remediation instructions, and assist a customer if needed
  • Ensure fast and reliable malware analysis suitable for initial assessment of malware impact and, where appropriate, suitable for creating cutting-edge PR stories, using local and global team resources

Skillset:

Essential

  • B.Sc. or higher degree in either Computer Science, Information Technology or related subjects
  • Atleast 15 years of Security industry experience involving exploit analysis, reverse engineering, etc
  • Strong reverse engineering skills
  • Understanding of PE32/PE64 files analysis
  • Understanding of x86 and x86-64 assembler
  • Knowledge of Windows OS internals - memory, threads, processes, API, etc.
  • Proficiency in disassemblers and debuggers usage (IDA Pro, HIew, WinDbg, OllyDbg, etc.)
  • Knowledge and understanding of file formats and network protocols
  • Experience with network traffic analysis tools (Wireshark, Fiddler)
  • Analysis and reversing of source codes compiled in different programming languages
  • In-Depth Programming experience in C, Python
  • Networking and Networking protocols
  • Desire to develop in the field of information security, to study and apply new technologies
  • Good communication skills

Additional

  • Knowledge of C++ or Perl programming languages
  • Real experience of sophisticated threats analysis - fileless attacks, ransomware, banking trojans, exploits, etc.
  • Penetration testing/red teaming experience, knowledge of corresponding tools and techniques
  • Understanding of Linux, MacOS malware and its threat landscape