Malware Analyst Job in Arlington 22201, Virginia Us
What's your vision of tomorrow? At Raytheon, we aspire to be the most admired defense and aerospace systems supplier through world-class people and technology.
Raytheon is a technology leader specializing in defense, homeland security and other government markets throughout the world. With a history of innovation spanning more than 89 years, Raytheon provides state-of-the-art electronics, mission systems integration and other capabilities in the areas of sensing; effects; command, control, communications and intelligence systems; as well as a broad range of mission support services.
Malware Analyst
Job Description: Raytheon is supporting a proprietary customer contract for delivering technical support to customer management and providing resources for the technical services required to enable customer mission accomplishment. In support of the customer's strategic direction, Raytheon is looking for key individuals who can support the protection of the customer environment. A specialist in computer malware analysis needed to support the customer team. The malware analyst will examine malicious software such as bots, worms, and Trojans to understand the nature of their threat. This task usually involves reverse-engineering the complied executables and examining how the program interacts with its environment.
Responsibilities will include :
- Recommend hardware, software, and develop policies and procedures to investigate malware incidents for multiple networks
- Facilitate the maintenance of the information system security posture across multiple networks
- Perform computer security functions
- Assist in the development and delivery of malware security awareness products and briefings
- Participate in technical meetings and working groups to address issues related to malware security and vulnerabilities
- Collaborate with a wide range of personnel to facilitate an effective malware program
- Prepare, write, and present reports and briefings as required
- Thoroughly investigate instances of malicious code to determine attack vector and payload, and to determine the extent of damage and data exfiltration. Provide detailed reports of any findings
- Conduct reverse-engineering for known and suspected malware files
- Develop analysis and make recommendations for the purchase of hardware and software that will mitigate malware intrusions
- Ensure hardware and software documentation meets compliance with prevailing federal governing directives for IT systems
- Identifies risks to computer systems and makes written and verbal recommendations to senior customer representatives
- Provide guidance to affect security of architectures while conducting movement of resources
- Provide training as required
- Handling of security incidents
- Conduct computer forensics using tools such as EnCase Forensics and EnCase Enterprise
- Configure and use HBGary products to include Responder, Digital DNA and Recon
- Conduct hands on usage of network analysis tools such as wireshark and tcpdump
- Participates in special projects as required
Required Skills:
- Must be a US Citizen
- Must have active Secret security clearance, and must be eligible for TS/SCI security clearance
- Advanced knowledge and capability through performing reverse engineering of malicious code to discover vulnerabilities in binaries
- Shall be able to recognize the high level language constructs (such as branching statements, looping functions and network socket code) critical to performing a thorough and professional reverse engineering analysis of a binary.
- Advanced knowledge of: industry standard compilers; reverse engineering programs; hex editors; binary analysis programs; code coverage analyzers; understanding conditional branching statements; virtual machines and byte code; system vs. code level reversing; branch prediction; memory management ; Win32 executable formats and image sections; advanced runtime analysis of malware; kernel mode debugging; dumping executables from memory; understanding hashing functions ; working with encrypted binaries ; reversing UPX and other compression types; discovering stack overflows; discovering heap overflows; creating a sandbox to isolate malware; unpacking malware; monitoring registry changes; identifying malware communication channels; understanding Digital Rights Management (DRM) implementations.
- Demonstrated software development / code writing skills - C++, C, Python, PERL, Assembly.
- Experience with tools such as Wireshark, Hex Rays, IDA Pro or Hex workshop.
- Experienced in computer security incident activities.
- Strong understanding of executable packing and malware analysis
- Strong understanding of binary file formats and runtime debugging
- Strong understanding of windows and UNIX operating systems
- Demonstrated ability to manage teams
- Understanding of security technologies and concepts, experience in design and implementation of secure network solutions including DMZs and web portals
- Knowledge of Information Assurance and Information Operations technologies and development activities.
- Possesses or quickly develop a comprehensive understanding of Government Information Security policies, regulations, and guidelines.
- Proficiency with MS Office Applications
- Must be able to work collaboratively across agencies and physical locations
Desired Skills:
- 12 years+ related experience
- Experience supporting Intelligence and/or DoD Customers
- Experience conducting security assessments, penetration testing, and ethical hacking
- Experience with process development and deployment
- Experience with one or more of the following:
- Excellent writing skills
Required Education:
BS Computer Science, Information Technology, Information Assurance/Security, Computer Engineering, Computer Information Systems, Software Engineering, Electrical Engineering OR Computer Systems Engineering. Must have a minimum of 8 years experience or equivalent education and experience. Masters Degree preferred.
Desired Certifications:
DODI 8570.1-M Compliance at IAT Level II; CISSP preferred
One or more of the following: MSCE, CCNA, CCNP, ISC CAP, CISM, ISMP, Security+, GIAC
Raytheon is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, or Vietnam era, or other eligible veteran status, or any other protected factor.
Innovative technologies. Superior solutions. Outstanding opportunities.
Raytheon Company (NYSE: RTN), with 2010 sales of $25 billion, is a technology and innovation leader specializing in defense, homeland security and other government markets throughout the world. With a history of innovation spanning 89 years, Raytheon provides state-of-the-art electronics, mission systems integration and other capabilities in the areas of sensing; effects; and command, control, communications and intelligence systems, as well as a broad range of mission support services. With headquarters in Waltham, Mass., Raytheon employs 72,000 people worldwide.
At Raytheon Intelligence and Information Systems (IIS), we transform data into knowledge. IIS is a leading provider of intelligence and information solutions, specializing in ground processing, unmanned ground systems, cybersecurity operations, homeland security and other markets to resolve the most complex problems for our customers worldwide. IIS employs more then 8,300 people worldwide with major hubs in the Mid Atlantic Region, Aurora, CO, and national Headquarters in Garland, TX, IIS generated $2.8 billion in 2010 revenues.
Bring your talent and skills to the following IIS team!
Raytheon is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, or Vietnam era, or other eligible veteran status, or any other protected factor.
To Apply for this position, please CLICK HERE 