We are seeking a Researcher to actively monitor and evaluate the threat landscape, research and log threats, and author signatures to address them. You will conduct deep analysis of malware and help develop our content architecture stack. As a part of your role, you will also coordinate with cross-functional teams and help drive technology to adapt to emerging threats. This is a remote position based in India.
Role Overview:
In this exciting Researcher role, you will find yourself dealing with a wide array of challenging Threats including File and File-less threats or varying types, polymorphic, parasitic, exploit, rootkit, etc. You will daily monitor and evaluate the Threat Landscape, actively research and log threats and techniques, author signatures or identify the right content stream to address threats with. In addition, you will conduct deep analysis of malware and carry out competitive testing as necessary. Based on your findings, you will also help evolve our content architecture stack. A part of your responsibility will be to help develop junior researchers and will on a regular basis coordinate with cross functional teams and groups spanning multiple Geographic locations. You will occasionally interact with other Internal Engineering Teams to help drive our technology to adapt to new emerging and evolving threats.
This is a remote position in India. We will only consider candidates currently in India and are not offering relocation assistance at this time.
About the role:
- Primary responsibilities include in-depth research and data analysis of malware impacting our customers.
- Author signatures for various strains of malware spanning various file formats. Conduct Deep Research into specific families or attacks when necessary.
- Identify features for machine learning and assist with feature engineering analysis for better model outcomes.
- Apply yourself in developing forward thinking solutions utilizing both ML and non-ML approaches, product features, heuristics, technique identification etc., capable of pushing the envelope to provide superior detection against advanced families.
- Intelligence harvesting and automation development enable better internal and external data mining and enhance field telemetry. Research and implement innovative ways to further improve Intelligence gathering efforts.
- Authoring descriptions for malware either via McAfee Virus Information Library, Threat Advisories, Whitepapers or Blogs.
About you:
- Experience at least 10 years in anti-malware research or related security experience.
- Experience in malicious code analysis and reverse engineering (RE).
- Experience with scripting, C/C++, and Windows API.
- Experience with IDA or equivalent disassembly tools & OllyDbg and Windbg or equivalent debuggers.
- Experience with data analysis tools such as Databricks, Jupiter notebooks and in ML model development.
- Good understanding of Assembly Language, Intel Architecture, and corresponding Instruction Formats.
- In-depth knowledge of the Portable Executable (PE) file format, operating systems (primarily Windows), Scripts, PDF, SWF, OLE, etc.