Malware Analyst

Founded in 2003 and headquartered in Singapore, Group-IB is a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime. Combating cybercrime is in the company’s DNA, shaping its technological capabilities to defend businesses, citizens, and support law enforcement operations.Group-IB’s Digital Crime Resistance Centers (DCRCs) are located in the Middle East, Europe, Central Asia, and Asia-Pacific to help critically analyze and promptly mitigate regional and country-specific threats. These mission-critical units help Group-IB strengthen its contribution to global cybercrime prevention and continually expand its threat-hunting capabilities.Each of us can help make the world a safer place.Join us!WHAT MAKES THE ROLE SPECIAL?Group-IB is a partner of INTERPOL, Europol, and a cybersecurity solutions provider, recommended by SWIFT and OSCE. Such partnerships give us advantages in our everyday duties.We make a deep research of malware and public presentation of complex research. We participate in IR and perform as experts at conferences and in mass media. Our reports are used by thousands of people all over the world.TASKS TO SOLVEResearch malicious files, conduct reverse engineering, and develop methods and approaches for detecting malicious files based on their behaviorEmulate attacker actions in a virtual environment to test and improve detection capabilitiesImplement detection logic within an existing framework (using Python, Rust, Yara, Sigma, Suricata)Independently identify problematic cases, evasion techniques for dynamic analysis systems, and solutions to these issues.Analyze detection logic for false positives and minimize such occurrencesConduct analysis of similar solutions to compare system behavior in different scenariosTest detection logic rules for functionality and performanceTHIS ROLE IS PERFECT FOR YOU IFYou have experience with IDA Pro, ring-3 debuggers, sandboxes, and other static and dynamic analysis toolsYou have x86 and x64 assembly knowledgeYou understand Windows architecture, WinAPI, and the PE file formatYou have good understanding of PDF and MS-CFB formatsYou can analyze obfuscated code written in scripting languagesYou know how to set up a virtual machine for malware analysisYou have experience in PythonYou have a keen interest in diverse tasks and the ability to quickly learn new thingsYou possess persistence and the ability to see complex tasks through to completionWHAT ELSE WE APPRECIATE IN OUR TEAMExperience in exploit analysis (Flash, PDF, DOCX, etc.)Experience in network traffic analysisPenetration testing experienceKnowledge of RustWHY CHOOSE GROUP-IBYour happiness is important to us. We want every single team member to be happy.Continuing professional development. At Group-IB, you can choose from various paths to growth: progress as an expert, advance to a management position, try your hand in another department, relocate abroad, or launch a new business area at Group-IB.A team with extensive international expertise. Do you have experience but are looking for exciting challenges? By choosing us, you will be choosing complex tasks and continuously improving your skills in a fast-growing international company.Globally recognized technologies. Group-IB\’s members are located in 25 countries and our products and services are sold in 60 countries. What’s more, Gartner, IDC, and Forrester have ranked our technologies among the best in their class. We work with over 450 international partners and about 500 clients.A culture created by each of us. Group-IB’s employees speak many different languages and understand one another. We respect each other\’s beliefs, share common values, and strive toward the happiness of every employee.Economic stability. Group-IB\’s sustainable growth helps rapidly develop careers that would take years to progress as far as most other companies.WHAT ELSE YOU SHOULD KNOWFlexible schedule. Group-IB does not have fixed working hours. You choose your own schedule. We adhere to the principle advocated by Steve Jobs: “We have to work not 12 hours, and head.”Health. If anything goes wrong, don’t worry — we offer health insurance.Challenges. A wide selection of GIB programs helps you improve soft skills, gain new competencies, and receive monetary rewards.The initiative is rewarded. At Group-IB, you can bring your most daring ideas to life. The company encourages technical blogging, writing articles, building sports teams, and other creative activities.Sounds like you? Don’t wait! Apply:)