Senior Malware Reverse Engineer - 1385934

February 05, 2023 - Remote

TALOS wants YOU! Cisco Talos is one of the largest commercial threat intelligence teams in the world, comprised of world-class researchers, analysts, and engineers. With our industry-leading visibility, actionable intelligence, and vulnerability research, we drive rapid detection and protection for Cisco customers against known and emerging threats and stop threats in the wild to protect the internet at large.

As a Senior Malware Reverse Engineer, you will work with a team of experts creating detections to defend Cisco’s customers. This team researches malware and is responsible for creation of detection content for the technologies TALOS supports. You will enable and improve the flow of actionable information from multiple sources to the team so that detection content can be created quickly and efficiently to defend our customers. The sources include, but are not limited to, Talos’ own internal threat intelligence, vulnerability development and outreach teams, as well as external sources as diverse as threat / vulnerability feeds, customer coverage requests, and incident response engagements. The team acts as a trusted security partner both within TALOS and beyond.

Role and Responsibilities:

  • Research malware families, trends and newly emergent threats
  • Statically and dynamically analyze malware in order to have an understanding of how it operates
  • Write detection content that powers Cisco devices
  • Ensure work performed aligns with team’s goals as collaboratively determined with TALOS Management
  • Guide the development efforts of the team, in terms of both small tools and major automation efforts
  • Mentor junior reverse engineers

Minimum Qualifications:

  • Typically, Bachelors + 12 years of related experience, or Masters + 8 years of related experience, or PhD + 5 years or related experience.
  • Five years of work experience in the security industry
  • Superb organization, decision making, as well as both verbal and written communication skills
  • A history of working well across multiple diverse organizations towards a common goal
  • Skill in bridging the gap between researchers and platform development teams
  • Basic knowledge of networking, transport, and application layer protocols
  • Familiarity with vulnerability analysis and common methods of exploitation
  • Ability to work independently with minimum supervision and take on additional tasks as required
  • Ability to work with small teams as well as across teams to solve complex problems

Preferred Qualifications:

  • 5+ Years of technical management experience, preferably in the cybersecurity field
  • Completion of, or familiarity with the value of, degrees, certifications, military experience, etc.
  • Knowing that knowing is half the battle
  • Expert understanding of malware and the threat landscape
  • Expert knowledge of disassemblers, Ghidra and/or IDA Pro
  • Expert knowledge of debuggers
  • Expert knowledge of Windows 10/11 and/or Linux and/or MacOS
  • Expertise in Python scripting

Work Conditions:

  • Works closely with research analysts to quickly develop detection content for all our core applications
  • Moderate to high levels of stress may occur at times
  • Fast paced and rapidly changing environment
  • Extremely talented and experienced team members and mentors
  • No special physical requirements
  • Constant internal training, heated discussions, ice cream and libations

Why Cisco

At Cisco, each person brings their unique talents to work as a team and make a difference. Yes, our technology changes the way the world works, lives, plays, and learns, but our edge comes from our people. Our People Are The Heart of Cisco.

Cisco is proud to be an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

We see inclusion and diversity as essential to fueling the power of connection. Learn about inclusion and collaboration in action at Cisco. Diversity, Inclusion and Collaboration at Cisco

Benefits and Perks

We strive to keep our teams happy and healthy. Many roles have the option to be Remote or Hybrid. Cisco provides competitive pay, excellent medical, dental and vision coverage, 401(k) match, 20 days of paid time off plus holidays, support for parents and paid time to volunteer. View the benefits overview. Benefits and Perks - Cisco

Join us! #WeAreCisco

Cisco Covid-19 Vaccination Requirements

The health and safety of Cisco’s employees, customers, and partners is a top priority. Our goal is to protect and mitigate the spread of COVID-19 infection for strong business resiliency during the pandemic. Therefore, Cisco may require new hires to be fully vaccinated against COVID-19 if the role requires business-related travel, meeting with customers/partners (including visiting third-party sites on behalf of Cisco), attending trade events, and Cisco office entry, unless otherwise prohibited by applicable law, and in countries where COVID-19 vaccination is legally required. The company will consider legally required accommodations/exceptions for medical, religious, and other reasons as per the requirements of the role and in accordance with applicable law. Additional information will be provided to candidates about the requirements and accommodation process at the offer time based on region.

Clicking APPLY will direct you away from