Arlington, Virginia

Raytheon Intelligence and Space (RIS) ___ Cybersecurity, Training & Services (CTS) has an immediate job opening for a Cyber Malware Analyst to support a U.S. Federal Agency contract to enable mission accomplishment by having experience understanding and analyzing cyber tools and malware samples in support of active investigations, creating cyber intelligence products.

The analyst will utilize tools, sources, methods and data to provide context about the evolving threat landscape. The successful candidate must have the ability to interpret and analyze large, ambiguous data sets and experience in writing analysis reports.

Location: National Capital Region (Rosslyn, VA)

Job Description:

Resolves highly complex malware and intrusion issues using computer host analysis, forensics, and reverse engineering. Discovers, analyzes, diagnoses, and reports on malware events, files and network intrusion and vulnerability issues. Recommends counter measures to malware and other malicious type code and applications that exploit customer communication systems. conducts reverse engineering for known and suspected malware files. Develops analysis and make recommendations for the purchase of hardware and or software that will mitigate malware intrusions. Develops policies and procedures to investigate malware incidents for the entire computer network. Assists in the development and delivery of malware security awareness products and briefings.

Job Responsibilities:

Shall perform specific activities that include, but not limited to the following:
___Provide analysis support 24x7x365
___Render technical assistance for criminal investigations and non-security related operational events as needed
___Contribute input to the Cyber Security Daily (CSD)
___Conduct advance analysis and recommend remediation steps for cyber security events and incidents

Required Skills:
___Experience with malware analysis and reverse engineering, network analysis tools, static and dynamic analysis tools
___Ability to automate analysis tasks, develop scripts to decode obfuscated data and network communications, analyze obfuscated code
___Understanding of software exploits, identifying host- and network-based indicators, using leading forensic tools such as but not limited to Access Data FTK, Guidance EnCase, Paraben P2 eXplorer, X-Ways Forensics, FireEye, Volatility, CloudStrike
___Knowledge with using mobility and open source forensic tools like Magnet Axiom, BlackBag Mobilyze, Cellebrite UFED, Paraben E3:DS, The Sleuth Kit (TSK) and Autopsy, BlackBag tools
___Proficient with malware analysis, sandboxing, and software reverse engineering
___Experience with scripting languages such as Python and PowerShell
___Knowledge of MITRE ATT&CK framework, and its uses within the cybersecurity community
___Knowledge of and practical experience of integration of COTS or open source tools
___Personality traits: We are looking for a team member who is curious and creative; persistent and determined; loves solving problems and puzzles; analytically rigorous; with uncompromising integrity
___Demonstrated ability to document processes
___Proficiency with MS Office Applications
___Must be able to work collaboratively across teams and physical locations
___You will nurture customer relationships
___Willing to work rotating shifts
___Must be able to obtain a Secret Clearance

Required Certifications:

Possess at least one relevant professional designation or related advanced IT certification, but not limited to the following:
___Certified Information Systems Security Professional (CISSP)
___GIAC Reverse Engineering Malware (GREM)
___GIAC Certified Incident Handler (GCIH)
___GIAC Network Forensic Analyst (GNFA)
___GIAC Intrusion Analyst (GCIA)

Desired Skills:

___Experience with RSA Netwitness, Splunk, FireEye NX, EX, HX, AX, Carbon Black Response, RSA Archer
___Current experience with network intrusion detection and response operations (Protect, Defend, Respond and Sustain methodology)
___Experience in the detection, response, mitigation, and/or reporting of cyber threats affecting client networks and one or more of the following: Experience in computer intrusion analysis and incident response; Working knowledge of Intrusion detection/protection systems; Knowledge and understanding of network devices, multiple operating systems, and secure architectures; Working knowledge of network protocols and common services; System log analysis
___Experience with SIEMS content analysis, development and testing, tools such as NetWitness, Splunk, SumoLogic, QRadar
___Experience with EDR solutions (Carbon Black, Crowdstrike, FireEye, SentinelOne)
___Familiarity with packet analysis to include: HTTP Headers & Status codes, SMTP Traffic & Status codes, FTP Traffic & Status Codes
___You are an excellent communicator
___Prior experience working in any of the following: Security Operations Center (SOC); Network Operations Center (NOC); Computer Incident Response Team (CIRT)

Desired Certifications:
Possess at least one relevant professional designation or related advanced IT certification, but not limited to the following: ___GIAC Certified Enterprise Defender (GCED)
___GIAC Security Expert (GSE)
___Certified Information Security Manager (CISM)
___Certified Ethical Hacker (CEH)

Required Education:
BS Degree with major in Computer Science/Electrical Engineering, Engineering, Science or a related field. Must have a minimum of 2+ years___ experience or equivalent education and experience.

*Occasional travel within CONUS and OCONUS is required


Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

Arlington, Virginia

Raytheon: Aspiring to be the most admired defense and aerospace systems company through our world-class people, innovation and technology

Raytheon Company is a technology and innovation leader specializing in defense, security and civil markets throughout the world. With a history of innovation spanning 91 years, Raytheon provides state-of-the-art electronics, mission systems integration and other capabilities in the areas of sensing; effects; and command, control, communications and intelligence systems; as well as a broad range of mission support services.

Similar jobs