Senior Malware Engineering Analyst

Job Title: Senior Malware Engineering Analyst
Location: Rosslyn, VA or Beltsville, MD
Terms: Full-time
Requirements: Must be a U.S. Citizen with Active Secret Security Clearance

About us
Cyber Management is a rapidly growing Veteran Owned Small Business (VOSB). To us, Cyber is no buzzword…it is all of the technology supporting our business, government, and personal information, and we understand how vital it is to integrate security into the overall cyber management schema from design through operations. Information is one of the greatest resources of our time…keeping it flowing and keeping it safe is our mission. Come join us as we grow!

We offer:

• Excellent compensation, benefits and financial incentive
• Opportunity to work with highly skilled and talented people
• A Company that understands and values what you do, and committed to mutual success!

About the Role
Cyber Management International Corporation is actively recruiting an experienced Security Architect looking for challenging, exciting work in support of the U.S. Department of State (DOS). Specifically, our customer is the Bureau of Diplomatic Security (DS), Directorate of Cyber and Technology Security (CTS). DS/CTS is a center of excellence that brings together cybersecurity, technology security, and investigative expertise as a unified security capability focused on solving critical and emerging issues enabling the State Department to fulfill its vital global mission.

Responsibilities

• Define and design/enhance security architecture and security systems.
• Collaborate with Application, Data & Infrastructure teams to architect, design and implement security solutions.
• Define and document security standards and direct implementation of standards and guidelines.
• Perform security audits and security reviews in compliance with Federal Government regulations and implement remediation.
• Create and manage the Security Risk plan.

Qualifications: Basic Requirements

• Bachelor’s degree and a minimum of 10 years’ of relevant experience. An additional 4 years of experience may be considered in lieu of degree.
• Ability to resolve highly complex malware and intrusion issues using computer host analysis, forensics, and reverse engineering.
• Ability to recommend sound counter measures to malware and other malicious type code and applications which exploit customer communication systems.
• Experience in the development of policies and procedures to investigate malware incidents for the enterprise network.
• Experience handling state and national level intrusions.
• Experience with evidence custody and control procedures.
• Experience with Debuggers, Disassemblers, Unpacking Tools, and Binary analysis tools.
• Experience with static and dynamic malware analysis tools and techniques.
• Knowledge of IOCs and APT threat actors.
• Demonstrated knowledge of the Incident Response Lifecycle.
• Demonstrated ability to utilize and leverage forensic tools to assist in determining scope and severity of a cybersecurity incident.
• Ability to identify remediation steps for cybersecurity events.
• Demonstrate strong organizational skills.
• Proven ability to operate in a time sensitive environment.
• Proven ability to communicate orally and written; ability to brief (technical/informational) senior leadership.
• Must have ONE of the following certifications: CASP+ CE, CCISO, CCNA Cyber Ops, CCNA-Security, CCNP Security, CEH, CFR, CISA, CISM, CISSP (or Associate), CISSP-ISSAP, CISSP-ISSEP, Cloud+, CySA+, GCED, GCIA, GCIH, GICSP, GSLC, SCYBER

Preferred Qualifications:

• Knowledge of host and network forensic analysis.
• Knowledge of high and low level programming.
• Knowledge of network, architecture, design and security.
• Knowledge of system design and process methodologies.
• Experience in developing and delivering comprehensive training programs.
• Experience collaborating with cross functional teams.
• Experience working in the inter-agency environment.
• Ability to communicate technical concepts to executive level leadership.