Location: Fort Meade, Maryland, USA
Remote Work: No
Job Number: R0134602
Share job via:
We're building value and opportunity by investing in cybersecurity, analytics, digital solutions, engineering and science, and consulting. Our culture of innovation empowers employees as creative thinkers, bringing unparalleled value for our clients and for any problem we try to tackle.
Empower People to Change the World®
Location: Fort Meade, Maryland, USA
Remote Work: No
Job Number: R0134602
Key Role:
Research malware families and threat groups to find new technical indicators and tactics, techniques, and procedures (TTPs) to be used for threat hunting efforts. Perform static code analysis on malware samples to extract indicators. Analyze malware obtained from internal and external sources. Analyze endpoint telemetry for anomalous and malicious behavior. Develop signature and heuristic detection rules to find new malware samples and indicators for threat groups. Leverage knowledge of how to analyze and evaluate complex malicious code to create technical reports for identification parameters, advanced capabilities, and potential mitigation strategies.
Basic Qualifications:
4+ years of experience with conducting dynamic or static analysis of malware
3+ years of experience with programming
Experience with using malware reverse engineering to determine indicators of compromise on a Linux, Windows, or mobile platform
Experience with malware reverse engineering using static and dynamic analysis tools, including disassemblers, debuggers, virtual machines, and hex editors
Experience with modern defensive and offensive security tools, techniques, and methods
Knowledge of the TCP/IP networking stack and network IDS technologies
Knowledge of x86 and x64 instruction set architectures
TS/SCI clearance with a polygraph
HS diploma or GED
Additional Qualifications:
Experience with monitoring threats through Tools, Techniques, and Procedures and how they relate to the MITRE ATT&CK framework
Ability to communicate technical concepts to technical and non-technical audiences
Ability to train and mentor staff and bring awareness to current and emerging threats
Possession of excellent interpersonal skills
Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; TS/SCI clearance with polygraph is required.
We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.
CMDNot ready to apply? Join our talent community and sign up for job alerts.
At Booz Allen, we believe that your talents are the gateway to tomorrow. Working at the leading-edge of artificial intelligence, data science, digital transformation, cybersecurity, engineering, and health and science, we uncover and solve the emerging challenges of our time. Ours is a culture of innovation, rooted in a collective desire to make a lasting impact that you will realize. The skills you’ll bring to our team, coupled with the unparalleled missions you’ll serve, will shift the way the world works and lead us into the future. Change is within reach—and it all starts with you.
If you are an individual with a disability and would like to request a reasonable workplace accommodation for any part of our employment process, please send an email to disability-accommodations@bah.com. Please indicate the specifics of the assistance needed. This option is reserved only for individuals who are requesting a reasonable workplace accommodation. It is not intended for other purposes or inquiries. We’re an EOE that empowers our people no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status or other protected characteristic to fearlessly drive change.