Full Time Employee Contractor
CGI Federal is currently seeking a Malware Analyst to support the reverse engineering and digital forensics efforts for our Security Operations Center (SOC) in Huntsville, AL. The Malware Analyst will be responsible for analyzing executables and malicious files. Performing advanced analysis and/or reverse engineering of suspect source code. Conducting detailed analysis of data hiding techniques. Providing support in the analysis of network traffic to identify malicious activity. Documenting technical findings and recommendations in formal incident reports. Writing scripts and developing software utilities to automate security analysis efforts. Must possess the ability to work in a fast paced environment, to triage and to work within a highly-technical group while providing explanations to non-technical people. . .
? Demonstrated experience programming in x86 Assembly, C/C++/C#
? Demonstrated experience in user and/or kernel mode debuggers
? Able to read, debug and analyze disassembly of x86 and x64 binaries
? Comfortable working with obfuscated samples
? Knowledge of current exploit and exploit mitigations techniques
? Technical knowledge of the internals of common file formats such as: PE file format, Microsoft Office and Adobe SWF and PDF
? Experience with Shellcode analysis
? Ability to develop scripts using Python
? Familiar with Embedded Systems
? Experience building research tools and automation scripts for daily tasks
? Familiar with Perl, .NET, or Java
? Understanding of Windows Internals to include: APIs, processes/threads, memory management
? Understanding of the Portable Executable (PE) format, and parsing of non-standard text file formats
? Comfortable working in Windows, Mac, Linux, and mobile environments
? Strong understanding of networking protocols
? 3+ years relevant professional experience, or a commensurate combination of education, training and experience, is required
? 3+ years of experience in:
- Vulnerability research
- C/C++ programming in contemporary Windows and Linux environments
- User- and/or kernel-mode debuggers
? Team player, excellent communication skills, good time management
? Organizational skills and the ability to work autonomously with attention to processes
? Ability to speak and communicate effectively with peers, management and clients
? Ability to speak and write fluently.
may require long hours or nights/weekends
? Digital forensics experience a plus
? Content Management and development for Security technologies (AV, FIM, HIPS, NIPS, SIEM, WAF/DAM),
? Security +, Network +, CISSP, CEH, GCIA, GCIH, CISM,GIAC GREM or IACRB CREA certification
? Knowledge and Experience of Security practices within an MSS environment.
? US Federal Government security clearance
Due to the nature of the government contract, US Citizenship and ability to hold a clearance required..
This is a great opportunity to join a winning team. CGI offers a competitive compensation package with opportunities for growth and professional development. Benefits for full-time, permanent members start on the first day of employment and include a paid time-off program and profit participation and stock purchase plans.
We wish to thank all applicants for their interest and effort in applying for this position, however, only candidates selected for interviews will be contacted.
No unsolicited agency referrals please.
All CGI offers of employment in the U.S. are contingent upon the ability to successfully complete a background investigation. Background investigation components can vary depending upon specific assignment, or upon any US government security clearance if required. Qualified applicants will receive consideration for employment without regard to their race, color, religion, sex, gender Identity, sexual orientation, national origin, age, disability, veteran status, pregnancy, or other status protected by law. CGI will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with CGI?s legal duty to furnish information.
To apply for this job, contact: