CodeHunter is looking for a Director to lead CodeHunter Malware Labs including hiring and managing a team of analysts who identify cyber threats, dissect code, and reverse engineer malware. You will conduct and oversee research and the production of concise written analysis and visual presentation of findings. This person will also work with our product and engineering teams to provide new and innovative sources and methods of collecting indicators of compromise and technical solutions to reduce risk to client networks and operations.

In addition to leadership skills and technical expertise, to be successful in this role we’re looking for passionate leaders and self-starters who can quickly understand and deliver on company and customer requirements.

Responsibilities

  • Lead a team of malware analysts, vulnerability analysts, and reverse engineers 
  • Work with product and engineering teams to develop new and innovative sources and methods of collecting indicators of compromise to protect customer networks
  • Identify and track high profile malicious campaigns that may impact our customer networks
  • Review and contribute towards writing high quality tactical, operational, and strategic assessments on the latest and most prevalent families of malware
  • Examine malicious software to identify new techniques and exploit targets on behalf of client intelligence needs
  • Document attack capabilities, understand its propagation characteristics, and define signatures for detection
  • Engage customer base and security community to assist in proactive disruption of malicious infrastructure affecting client operations

Requirements

  • 5+ years hands-on experience conducting dynamic and static analysis of malicious software or exploit/vulnerability analysis
  • 3+ years of experience managing and leading a team of analysts
  • Direct experience as a consumer of technical threat intelligence data and the understanding of risks facing large corporations and defensive measures employed to mitigate them
  • Experience integrating threat intelligence data into commercial or open-source Threat Intel Platforms including MISP
  • A passion for mentoring and training team members and customers
  • Ability to oversee and lead malware and vulnerability related projects in conjunction with our product and engineering teams
  • Experience refining source information and raw data into intelligence products
  • Strong analytical and writing skills, with ability to rapidly and accurately break down technical topics and effectively assess and communicate risks and potential impacts to a wide variety of audiences
  • Strong understanding of common families of malware and characteristics of each
  • Experience tracking various Advanced Persistent Threat actor groups and their TTPs
  • Strong familiarity with mitigation strategies such as Suricata, Snort and YARA signatures and frameworks like ATT&CK
  • Knowledge of malware packers, obfuscation techniques, and exploit kits

 

Desired Skills

  • GREM, GCIH, GPEN, or equivalent advanced security certification is a plus
  • Strong scripting and task automation skills in Python highly desirable