Malware Analyst
City:
Minsk, Belarus
Level:
over 1 year
Type of employment:
Full-time
Operating mode:
Full day
City:
Minsk
Level:
over 1 year
Type of employment:
Full-time
Operating mode:
Full day
Our expectations:
Completed secondary specialized education or higher education
Good understanding of Assembly language
Understanding of logic described in C/C++ in the context of executable file analysis
Basic scripting skills
Basic knowledge of network protocols, computer forensics, and operating system memory management principles
Knowledge of operating systems in the context of malware analysis
Knowledge of PE/ELF file structure
Knowledge of the principles of malware operation, persistence methods, evasion of security solutions, anti-analysis techniques, malicious payload execution, and communication with C&C
Ability to perform static and dynamic malware analysis using appropriate tools
Knowledge of the detection logic used by security solutions (EDR/Antivirus)
Experience using Volatility or other tools to find and extract artifacts from operating system memory images
Ability to analyze network traffic
Will be an advantage:
Skills in writing YARA detection rules
Participation in Reverse/Binary PWN CTFs, for example: Flare-On, Crackmes.one RE CTF
Experience writing detailed malware research reports
Experience administering security solutions (Sandbox, EDR)
In this role, you will be expected to:
Participate in cyber incident response and subsequent investigations
When malware is detected, analyze it and share information about its functionality and the IOCs identified during analysis with other incident response team members
Work with other team members on organizational projects in areas where your expertise may be required
Research new malware samples from public sources to expand expertise and create detailed reports
Stages of the hiring process:
HR pre-screen — an online meeting where we will get acquainted and discuss organizational and theoretical questions
Technical interview with the head of the department at the company’s office
Based on the technical interview, a test assignment may be offered
Work format: office, full-time.
See you at the interview!
A workplace is planned to be created and filled (future opening).
