Jobs//Remote//Data + Analytics//

Principal Malware Analyst

Red Canary
| Remote
Sorry, this job was removed at 5:19 a.m. (MST) on Thursday, August 26, 2021
View 210 Jobs
Find out who’s hiring remotely
See all Remote jobs
View 210 Jobs
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job

Who We Are

Red Canary was founded to create a world where every organization can make its greatest impact without fear of cyber attack. Our combination of market-defining technology, processes, and expertise are preventing breaches every day. We are completely changing the way security is delivered and setting the new standard for security. If our mission resonates with you, let’s talk!


What We Believe In

- Do what’s right for the customer

- Be kind and authentic

- Deliver great quality

- Be relentless


Challenges You Will Solve

The quickly-growing Red Canary Intelligence Team strives to be the industry leader in operational threat intelligence as we produce intelligence to enable Red Canary, our customers, and the community to make better decisions. We work to make the intelligence we share actionable and impactful for detection and response as we continue to push the boundaries in close cooperation with operations, threat research, and engineering. You will serve an integral role in helping the team analyze what adversaries are doing so that we can produce actionable intelligence.

What You’ll Do

  • Build on existing malware analysis practices to create a repeatable malware analysis workflow, including considerations around prioritization, triage, and outputs.
  • Suggest and implement new methods, processes, tools, and deliverables that the team could adopt to help us improve and better achieve our mission.
  • Perform in-depth static analysis and reverse engineering of malware samples to extract all relevant indicators, behaviors, and capabilities.
  • Perform dynamic analysis and triage on suspected malicious samples for the purpose of confirming malicious behavior and to extract relevant indicators of compromise and other findings.
  • Assist intelligence analysts with investigating raw telemetry, potential malicious activity, and confirmed threat detections for the purpose of identifying threats, providing context, and informing decisions about detection and response.
  • Perform open and closed source research to associate malware samples and/or malicious activity to known threats.
  • Assess code similarity among known malware families as well as patterns in identified malware and detections. Assist intelligence analysts in identifying new activity clusters.
  • Perform proactive research and hunting to identify similar malware samples from open and closed source data sets.
  • Work with intelligence analysts to communicate malware analysis findings, identify overlaps and patterns between different malware samples and families, and recommend detection and response actions.
  • Supplement Intelligence Profile documents with detailed, technical context.
  • Partner with detection engineers to help contextualize and implement robust detector logic.
  • Write reports and communicate actionable insights based on analysis, both internally and externally to customers.
  • Share information with the community as you have a desire to do so, including via blog posts and/or presentations. Collaborate with external malware researchers while understanding and mitigating risks of sharing.
  • Service requests from incident handlers to provide more details about malware indicators and capabilities discovered within customer environments. Communicate directly with customers as requested.
  • Serve as a mentor and coach for other malware analysts.

What You’ll Bring

  • A desire to work collaboratively with intelligence analysts as part of a team
  • The ability to coach and mentor other malware analysts on how to perform high-quality analysis
  • The ability to proactively identify and recommend solutions to problems
  • The ability to proactively and independently produce high-quality deliverables that require little review before broad dissemination
  • The ability to lead other analysts to successfully complete scoped projects
  • The ability to clearly communicate complex malware concepts and answer challenging questions for customers, including the ability to re-scope requests to better meet requirements
  • Demonstrated initiative to tackle and solve problems
  • Experience performing dynamic and static analysis of malicious compiled and script-based code
  • Familiarity with operating system internals
  • The ability to communicate highly technical concepts in a clear, succinct fashion to non-subject matter experts, both verbally and in writing
  • Familiarity with the mechanics of attack techniques and behaviors as implemented in malicious code
  • Knowledge of x86 and x86-64 assembly language syntax and semantics
  • Familiarity with multiple executable file formats (e.g. PE, Mach-O, ELF)
  • Experience writing or using YARA rules
  • A strong understanding of endpoint process telemetry and experience working with EDR tools
  • Familiarity with using MITRE ATT&CK(R)
  • Experience analyzing obfuscated script and compiled code
  • Experience with script and compiled code deobfuscation
  • Experience differentiating legitimate software from suspicious or malicious software and the ability to speak to confidence levels and evidence for those assessments
  • Experience with software development (preferred, not required)
  • An understanding of fundamental intelligence concepts such as attribution, group naming, and assessments (preferred, not required)

Targeted base salary range: $175,000 - $200,000 + bonus eligibility and equity depending on experience


Why Red Canary?

Red Canary is where people embody our mission to improve security outcomes for all. People work hard to maintain a culture that encourages authenticity in order to do your best work. Our people are driven and committed to finding the best security outcomes, delivering real and actionable answers, and being transparent along the way. 


At Red Canary, we offer a very rich benefits program to our full-time team members so they can focus on their families and improving our customers’ security. For a full list of benefits, please review our Benefits Summary:

https://redcanary.com/wp-content/uploads/2021/01/Benefit-Summary-Red-Canary.pdf 


Individuals seeking employment at Red Canary are considered without regard to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.

Read Full Job Description
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
  • Sales & Marketing
  • People Operations
    • GolangLanguages
    • JavascriptLanguages
    • PythonLanguages
    • RubyLanguages
    • RustLanguages
    • SqlLanguages
    • jQueryLibraries
    • ReactLibraries
    • ReduxLibraries
    • Ruby on RailsFrameworks
    • PostgreSQLDatabases
    • RedisDatabases
    • WordpressCMS
    • HubSpotCRM
    • SalesforceCRM
    • SlackCollaboration
    • ZoomCollaboration
    • AsanaProject Management
    • BasecampProject Management

Location

Our state-of-the-art HQ is located in the brand new McGregor Square centered in Denver's historic LoDo. From inception we have been hybrid workforce.

An Insider's view of Red Canary

What's something quirky about your company?

On a quarterly basis, we have a companywide gathering that we affectionately call BEASTMODE. It’s a great opportunity for “Canaries” from across the country to come together, level-set on the state of the business, get to know each other better, and build a close knit community trying to make a positive impact on the world.

Dave

Director, Customer Success

What projects are you most excited about?

The Cyber Incident Response Team (CIRT) reached the milestone of 10,000 spec/unit tests to validate our detection logic, an indicator of how diligently we maintain our detectors. Continued validation that everything is working as anticipated is key to ensuring a successful security program.

Joe

VP, Customer Security Operations

What makes someone successful on your team?

Curiosity. If you are asking questions, building on what you just learned, and relating it to something known, then you are truly curious about what you’re learning and you will become an expert.

Diane

Director of Product Support

How do you empower your team to be more creative?

As we continue to grow and add specialized focus across digital media, video, and an even more robust content program, I want the team to be able to take all the great insights and educational pieces and recommendations and make it easy for people to find them, understand them, and implement them. To be able to use what we’re doing in marketing in

Brianne

Director, Marketing

What does career growth look like on your team?

Customer Solutions Engineers possess a blended skillset that intersects business, security and technical. Team members can grow within their role or continue to develop their talents into positions such as technical account manager, security architect, and evangelist.

Robbie

Director, Customer Solutions Engineering

What are Red Canary Perks + Benefits

Red Canary Benefits Overview

Exceptional healthcare, dental, and vision coverage including fully paid premiums
Unlimited PTO
401k and flex-spending accounts, including an employer-funded HRA
100% employer paid long and short term disability
Monthly stipend for personal fitness and cell phone

Culture
Flexible work schedule
Remote work program
Diversity
Documented equal pay policy
Mandated unconscious bias training
Hiring practices that promote diversity
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Wellness programs
Mental health benefits
Financial & Retirement
401(K)
Company equity
Performance bonus
Child Care & Parental Leave Benefits
Childcare benefits
Generous parental leave
We provide up to 8 weeks of parental leave for new parents.
Family medical leave
Fertility benefits
Vacation & Time Off Benefits
Unlimited vacation policy
Paid volunteer time
Paid holidays
Paid sick days
Employees receive 80 hours per year of paid sick leave.
Flexible time off
Office Perks
Commuter benefits
Free snacks and drinks
Company-sponsored happy hours
Fitness stipend
Home-office stipend for remote employees
Professional Development Benefits
Job training & conferences
Promote from within
Mentorship program
Continuing education available during work hours
Paid industry certifications

Additional Perks + Benefits

Annual company all-hands meeting where we bring in all of our remote team members to build camaraderie, align and learn.

View full list of perks + benefits

More Jobs at Red Canary

Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about Red CanaryFind similar jobs like this