Principal Malware Analyst
Remote - USA
Applications have closed
Dragos, Inc.
Dragos secures industrial assets across vertical industries. Learn more about how we protect critical industries to reinforce ICS/OT cybersecurity around the world.Responsibilities
- Search for new threats to industrial control systems (ICS) and critical infrastructure
- Track, monitor, and associate behaviors to known or new ICS activity groups
- Reverse engineer and deobfuscate ICS-related malware, tools, and software
- Produce technical reports documenting malware activity and provide defensive recommendations
- Create Yara signatures and threat behavior analytics to identify threats in ICS environments
- Improve analysis and workflow through automation, tooling, and process efficiencies
- Partner with hunters and analysts to deliver innovative threat research
- Maintain a deep understanding of industry standard tools and best practices
- Actively pursue tactical and strategic intelligence, methodologies, and motivations behind specific and targeted attacks and those witnessed within the industry
Requirements
- Commitment to being a team player on a fast-moving team on rapidly innovating the state of industrial security
- Communication skills with a demonstrated bias towards collaboration and teamwork
- 5+ years utilizing static and dynamic analysis tools to conduct in-depth reverse engineering of hardware and/or software without source code
- Knowledge of three or more of these languages: Python, Rust, Ruby, GO, Lua, C, C++
- Understanding of assembly language and disassemblers such as IDA Pro, Ghidra, etc.
- Understanding of common operating system internals and the ability to identify analytic opportunities
- Applied knowledge of network communication fundamentals
Nice to haves
- Experience with industrial control systems, networks, and protocols
- A background of operational red team and/or blue team experience
- Prior experience writing IDA, Python and/or Ghidra scripts
Compensation
- Base Salary: $170,000
- Base + Benefits + Equity = $275,000
- Comprehensive benefits plan (medical, dental, vision, disability, life insurance, 401K with match)
- Equity at Dragos is quickly growing and the total compensation under-represents the future growth and refresh program. This will be discussed on the first call with the Dragos recruiter.
Tags: Analytics Automation Blue team C Ghidra ICS Industrial Lua Malware Python Red team Reverse engineering Ruby Rust Threat intelligence Threat Research
Perks/benefits: 401(k) matching Equity Health care Insurance
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open IPS-related jobs
- Open CEH-related jobs