Malware Reverse Engineer - 1378494

December 06, 2022 - Remote - US

Location: This position can be fully Remote in the United States.

TALOS wants YOU!

Cisco Talos is one of the largest commercial threat intelligence teams in the world, comprised of world-class researchers, analysts, and engineers. With our industry-leading visibility, actionable intelligence, and vulnerability research, we drive rapid detection and protection for Cisco customers against known and emerging threats and stop threats in the wild to protect the internet at large.

As a Malware Reverse Engineer, you will work with a team of experts creating detections to defend Cisco’s customers. This team researches malware and is responsible for creation of detection content for the technologies TALOS supports. You will enable and improve the flow of actionable information from multiple sources to the team so that detection content can be created quickly and efficiently to defend our customers. The sources include, but are not limited to, Talos’ own internal threat intelligence, vulnerability development and outreach teams, as well as external sources as diverse as threat / vulnerability feeds, customer coverage requests, and incident response engagements. The team acts as a trusted security partner both within TALOS and beyond.

Role and Responsibilities:

  • Research malware families, trends and newly emergent threats
  • Statically and dynamically analyze malware in order to have an understanding of how it operates
  • Write detection content that powers Cisco devices
  • Ensure work performed aligns with team’s goals as collaboratively determined with TALOS Management
  • Guide the development efforts of the team, in terms of both small tools and major automation efforts
  • Mentor junior reverse engineers

Minimum Qualifications:

  • Five years of work experience in the security industry
  • Superb organization, decision making, as well as both verbal and written communication skills
  • A history of working well across multiple diverse organizations towards a common goal
  • Skill in bridging the gap between researchers and platform development teams
  • Basic knowledge of networking, transport, and application layer protocols
  • Familiarity with vulnerability analysis and common methods of exploitation
  • Ability to work independently with minimum supervision and take on additional tasks as required
  • Ability to work with small teams as well as across teams to solve complex problems

Preferred Qualifications:

  • 5+ Years of technical management experience, preferably in the cybersecurity field
  • Completion of, or familiarity with the value of, degrees, certifications, military experience, etc.
  • Knowing that knowing is half the battle
  • Expert understanding of malware and the threat landscape
  • Expert knowledge of disassemblers, Ghidra and/or IDA Pro
  • Expert knowledge of debuggers
  • Expert knowledge of Windows 10/11 and/or Linux and/or MacOS
  • Expertise in Python scripting

Work Conditions:

  • Works closely with research analysts to quickly develop detection content for all our core applications
  • Moderate to high levels of stress may occur at times
  • Fast paced and rapidly changing environment
  • Extremely talented and experienced team members and mentors
  • No special physical requirements
  • Constant internal training, heated discussions, ice cream and libations

Why Cisco?

At Cisco, each person brings their unique talents to work as a team and make a difference. Yes, our technology changes the way the world works, lives, plays and learns, but our edge comes from our people. Our People Are The Heart of Cisco.

We connect everything – people, process, data and things – and we use those connections to change our world for the better. We innovate everywhere - From launching a new era of networking that adapts, learns and protects, to building Cisco Services that accelerate businesses and business results. Our technology powers entertainment, retail, healthcare, education and more – from Smart Cities to your everyday devices.

We benefit everyone - We do all of this while striving for a culture that empowers every person to be the difference, at work and in our communities.

Colorful hair? Don’t care. Tattoos? Show off your ink. Like polka dots? That’s cool. Pop culture geek? Many of us are. Be you, with us! #WeAreCisco

Cisco is proud to be an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

We see inclusion and diversity as essential to fueling the power of connection. Learn about inclusion and collaboration in action at Cisco. Diversity, Inclusion and Collaboration at Cisco.

Benefits and Perks

We strive to keep our teams happy and healthy. Many roles have the option to be Remote or Hybrid. Cisco provides competitive pay, excellent medical, dental and vision coverage, 401(k) match, 20 days of paid time off plus holidays, support for parents and paid time to volunteer. View the benefits overview. Benefits and Perks - Cisco.

Join us! #WeAreCisco

Cisco Covid-19 Vaccination Policy

The health and safety of Cisco’s employees, customers, and partners is a top priority. Our goal is to protect and mitigate the spread of COVID-19 infection for strong business resiliency during the pandemic. Therefore, Cisco requires all new hires to be fully vaccinated against COVID-19 in the U.S., unless otherwise prohibited by applicable law, and in countries where COVID-19 vaccination is legally required. The company will consider legally required accommodations/exceptions for medical, religious, and other reasons as per the requirements of the role and in accordance with applicable law. Additional information will be provided to candidates about the requirements and accommodation process at the offer time based on region.


Clicking APPLY will direct you away from TalosIntelligence.com