Banner C

Senior Threat Intelligence Researcher, Malware Reverse Engineer

Bengaluru, Karnataka, India Req #604
Tuesday, October 1, 2024

About eSentire

eSentire is on a mission to hunt, investigate and stop cyber threats before they become business disrupting events. We were founded on the premise that if you can’t find a solution, you build it. Entrepreneurship and innovation are in our DNA. Our culture is based on transparency, teamwork, and continuous innovation.

As the authority in Managed Detection and Response, we protect the critical data and applications of 2000+ organizations in 80+ countries, across 35 industries from known and unknown cyber threats.

The Role

 

eSentire is seeking a highly skilled Malware Reverse Engineer to join our Threat Intelligence team. As a Malware Reverse Engineer, you will play a critical role in analyzing and reversing malicious code to inform eSentire customers on emerging threats and provide actionable intelligence to improve cybersecurity protection services. If you enjoy solving complex problems, working in a collaborative environment, and staying up-to-date with the latest cyber threats, we encourage you to apply.

The successful candidate will report to the Director of Threat Intelligence and will be responsible for a range of critical tasks. One of the key responsibilities will be to conduct in-depth analysis of malware, which involves examining malicious code to understand its behavior, exploit techniques, and communication protocols. This analysis will help identify the underlying concepts and techniques used by the malware to breach security controls. Furthermore, the candidate will be responsible for reverse engineering malware, which involves taking apart the code to understand its inner workings and identifying the key components that allow it to operate. This will enable the candidate to identify the command and control (C2) communication protocols used by the malware, as well as any data exfiltration or other stages that allow it to breach security controls. In addition to conducting malware analysis and reverse engineering, the candidate will collaborate with the team to produce written technical analytical assessments, malware blogs, and security advisories that keep eSentire customers informed of emerging threats and provide actionable intelligence to improve cybersecurity protection services. This will involve creating technical content that conveys complex concepts to a tactical, operational, and strategic audience through written reports and presentations.

 

Responsibilities

 

  • Reverse engineering malware: Perform reverse engineering of malware samples to understand their capabilities, behavior, and communication protocols. Work collaboratively with the team to automate data collection/processing where possible.
  • Analysis of malware metadata: Analyze malware metadata, including infected hosts, domains, and IP addresses, to identify trends and patterns.
  • Creation of Threat Intelligence: Malware Analysis reports & Threat Response Unit Blogs: Produce comprehensive malware analysis reports that highlight the key findings, behavior, and potential impact of the malware, as well as support in the creation of content highlighting notable investigations.
  • Collaboration: Collaborate with the Threat Intelligence team to develop new analysis methodologies, improve the efficiency of existing processes, and integrate new tools and technologies into the workflow.
  • Professional development: Stay up-to-date with emerging threats, tools, and techniques through continued learning and professional development.
  • The Director of Threat Intelligence will assign other duties if required.

 

Time Allocation

  • 50% – Malware Analysis and Reverse Engineering
  • 25% - Customer Briefings on Malware Analysis and Threats
  • 20% - Collaboration on Project Solutions that Include Malware Analysis
  • 5% - Threat Intelligence Escalations related to Malware Analysis

 

Requirements

 

  • Minimum of 3 years’ experience in a related field, such as penetration testing, incident response, or malware analysis.
  • Proficiency in programming languages such as C, C++, Java, or Python.
  • Experience in reverse engineering malware and understanding its behavior, exploit techniques, and communication protocols.
  • Strong analytical skills to understand complex malware concepts and convey them in a clear, concise manner.
  • Excellent written and verbal communication skills.

 

Desired Skills 

 

  • Experience Familiarity with reverse engineering tools, such as IDA Pro, OllyDbg, or Radare2.
  • Experience in disassembling and debugging malware to understand its behavior.
  • Familiarity with memory analysis techniques to reverse engineer malware and analyze its communication protocols.
  • Strong understanding of security concepts, including network protocols, operating system security, and cryptography.
  • Familiarity with malware analysis tools, such as Anubis, Cuckoo Sandbox, or Joe Sandbox.
  • Experience with Threat Intelligence Platforms and Open Source tools such as MISP, ThreatConnect, Anomali, DomainTools, Recorded Future, Flare, CyberSixGill, Shodan, Censys & Binary Edge.
  • Ability to convey complex technical content to a tactical, operational, and strategic audience.
  • Familiarity with incident lifecycle and reporting.
  • Familiarity with MITRE’s ATT&CK framework.
  • SANS Certifications are considered an asset (GREM, FOR710)

Our Culture and Values

At eSentire we work in a collaborative and innovative work environment. We work with brilliant and passionate people who strive and encourage others to do their best. eSentire’s idea-rich environment welcomes creative and sometimes unconventional perspectives!

We celebrate diversity, operating with mutual respect and consideration, in an environment that fosters inclusivity for all. We believe that a variety of perspectives, backgrounds, and experiences make us stronger – if you’re enthusiastic about this opportunity but don’t meet every qualification, we encourage you to apply anyway. It takes a diverse set of thoughts, cultures, backgrounds, and perspectives to be a true market leader.

Total Rewards

We believe in rewarding performance and providing comprehensive benefits tailored to support your well-being. Our package includes comprehensive health benefits, a flexible vacation plan, and participation in our company-wide equity program, allowing you to share in the success and growth of our organization. 

Accommodation
 
If you have any accessibility requirements during the recruitment process, please reach out to our HR team at aoda@esentire.com and any accommodation needs will be addressed upon request. Your talents and unique perspectives are valued, and we look forward to the opportunity to work together to build a more inclusive future.

It's our mission at eSentire to protect our customers 24/7/365 and we extend this conviction to job seekers. During the application and interview process, eSentire will communicate with you from one of our corporate "@esentire.com" email addresses, never from a public email address. We strive to provide a welcoming, respectful, and thorough interview process, providing the candidate with ample opportunity to spend time with the hiring manager, recruiter, and future colleagues face to face, or using a video conference technology.   


#LI-SJ1
#LI-Remote

Other details

  • Job Family Security Internal (Advanced)
  • Pay Type Salary
Location on Google Maps
  • Bengaluru, Karnataka, India