CharlotteRecruiter Since 2001
the smart solution for Charlotte jobs

Malware Reverse Engineer Lead

Company: Allstate
Location: Charlotte
Posted on: August 17, 2019

Job Description:

Where good people build rewarding careers.Think that working in the insurance field can't be exciting, rewarding and challenging? Think again. You'll help us reinvent protection and retirement to improve customers' lives. We'll help you make an impact with our training and mentoring offerings. Here, you'll have the opportunity to expand and apply your skills in ways you never thought possible. And you'll have fun doing it. Join a company of individuals with hopes, plans and passions, all using and developing our talents for good, at work and in life.Job DescriptionThe Allstate Information Security (AIS) department is responsible for managing cyber security at Allstate.-- This includes Governance/Risk/Compliance, Access Management, Network Security, and Threat Response Services.-- The department is responsible for ensuring confidentiality, integrity, and availability of Allstate systems.--We are seeking an experienced Malware Analyst/Reverse Engineer to perform malware analysis and reverse engineering in support of incident response, investigative analysis, threat hunting, and research on existing and emerging cyber threats. The role will involve in-depth analysis of static and behavioral analysis of complex malicious code utilizing various tools, including disassemblers, debuggers, hex editors, un-packers, virtual machines, and network sniffers. The candidate will perform the functions of malware analyst/reverse engineer and serve as a liaison for Threat Services for the Global Fusion Center, and mentor and collaborate with the threat hunting, incident handling/response, and forensics teams.Key ResponsibilitiesUse expertise in malware analysis/reverse engineering to evaluate and analyze complex malicious code.Perform reverse-engineering for suspected or known malware files, determining the TTPs associated with the code.Develop custom tools designed to automate analysis.Perform research around malicious software, vulnerabilities, and exploitation tactics, and recommend preventative or defensive actions.Produce detailed reports identifying attributes and functionality of malware, and IOCs that can be used for malware identification/detection, to include behavior, identified infrastructure used for command and control, and mitigation techniques.Assist in identifying (hunting) and profiling threat actors and TTPs.Develop host and network based signatures to identify specific malware via heuristic and/or anomaly based detection methods.Participate in formal technical briefing and proposals.Perform as an Information Security SME in the several of the following areas:Malicius code behaviorThreat IntelligenceIncident RespnseWeb ApplicatinLg analysis (statistical modeling, correlation, pattern recognition, etc.)Micrsoft platform (Server, workstation, applications)Key Responsibilities (Cont'd)Open Systems platfrms (Linux, UNIX, VM Ware ESX)Networking (firewalls, IDS/IPS, packet capture)Databases (Oracle, SQL Server, DB2, IMS)---and others.--Providing mentorship and support to teammates regarding malicious file analysis/behavior, communication/rapport with other divisions and various levels of leadership, technical expertise, and career development.Capable of identifying need & driving solutions, and providing guidance, in an autonomous manner.Job QualificationsBachelors and/or Masters Degree in Engineering, Computers Science, or related field7+ years overall technical experience in either reverse engineering/malware analysis, threat intelligence, incident response, security operations, or related information security field.5+ years experience in application design/engineering, including but not limited to programming/scripting, Windows/Linux system administration, RDBMS/NoSQL database administration, etc.2+ years experience in penetration testing, ethical hacking, exploit writing, and vulnerability managementAdvanced experience with reverse engineering tools like IDA Pro, Ghidra, OllyDbg, Windbg, and Wireshark.Strong knowledge of Python scripting to automate analysis and reverse engineering tasks.Ability to reverse engineer binaries of various types including: x86, x64, C, C++, and .NET.Deep understanding of x86, ARM, and x64 architectures.Strong understanding of Windows Operating System Internals, --Windows APIs, and --writing and analyzing DLLs.Strong experience with programming languages (Python, Bash, PowerShell, Perl, C/C++).Recent experience developing custom software and hardware tools to assist in performing reverse engineering and vulnerability analysis.Deep understanding of common network and application stack protocols, including but not limited to TCP/IP, SMTP, DNS, TLS, XML, HTTP, etc.Job Qualifications (Cont'd)Advanced experience with security operations tools, including but not limited to:SIEM (e.g. Splunk, ArcSight)Indicatr management (e.g. ThreatConnect)Link/relatinship analysis (e.g. Maltego, IBM i2 Analyst Notebook)Signature develpment/management (e.g. Snort rules, Yara rules)Broad experience with various common security infrastructure tools (NIDS, HIPS, EDR, etc.)Excellent analytical and problem solving skills, a passion for research and puzzle-solving.Expert understanding of large, complex corporate network environments.Strong communication (oral, written, presentation), interpersonal and consultative skills, especially in regard to white papers, briefs, and presentations.Good organization and documentation skills.Leadership and mentorship skills.Preferred CompetenciesAt least hobbyist experience in "maker"/hardware hacking, e.g. Raspberry Pi, Arduino, etc.Familiarity with Linux OS and mobile iOS/Android forensics.Experience in cryptography or cryptanalysis.Experience with incident response workflow (or other case management "ticketing") tools such as RSA Archer, ServiceNow, Remedy, JIRA, Resilient, Best Practical Request Tracker, etc.Obtained certifications in several of the following: SANS GIAC courses, GREM, CEH, CISSP, OSCP, or tool-specific certifications--The candidate(s) offered this position will be required to submit to a background investigation, which includes a drug screen.--Good Work. Good Life. Good Hands--. As a Fortune 100 company and industry leader, we provide a competitive salary - but that's just the beginning. Our Total Rewards package also offers benefits like tuition assistance, medical and dental insurance, as well as a robust pension and 401(k). Plus, you'll have access to a wide variety of programs to help you balance your work and personal life -- including a generous paid time off policy.--Learn more about life at Allstate. Connect with us on Twitter, Facebook, Instagram and LinkedIn or watch a video.--Allstate generally does not sponsor individuals for employment-based visas for this position.Effective July 1, 2014, under Indiana House Enrolled Act (HEA) 1242, it is against public policy of the State of Indiana and a discriminatory practice for an employer to discriminate against a prospective employee on the basis of status as a veteran by refusing to employ an applicant on the basis that they are a veteran of the armed forces of the United States, a member of the Indiana National Guard or a member of a reserve component.--For jobs in San Francisco, please click--"here"--for information regarding the San Francisco Fair Chance Ordinance.--For jobs in Los Angeles, please click--"here"--for information regarding the Los Angeles Fair Chance Initiative for Hiring Ordinance.It is the Company's policy to employ the best qualified individuals available for all jobs. Therefore, any discriminatory action taken on account of an employee's ancestry, age, color, disability, genetic information, gender, gender identity, gender expression, sexual and reproductive health decision, marital status, medical condition, military or veteran status, national origin, race, religion (including religious dress), sex, or sexual orientation that adversely affects an employee's terms or conditions of employment is prohibited. This policy applies to all aspects of the employment relationship, including, but not limited to, hiring, training, salary administration, promotion, job assignment, benefits, discipline, and separation of employment

Keywords: Allstate, Charlotte , Malware Reverse Engineer Lead, Engineering , Charlotte, North Carolina

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other Engineering Jobs


Cloud Engineer
Description: We are unable to sponsor as this is a permanent full time role A prestigious company is on the search for an Application Cloud Engineer. This role is revolved around DevOps and Cloud engineering. (more...)
Company: Request Technology, LLC
Location: Charlotte
Posted on: 08/24/2019

Malware Reverse Engineer Lead
Description: Malware Reverse Engineer Lead Location: Charlotte, NC, potentially remote for candidates that possess all of the required skills Duration: Full Time Required Skills: ul li Malware/Reverse Engineering: (more...)
Company: Sunsoft Solutions
Location: Charlotte
Posted on: 08/24/2019

Endpoint Security Engineer Talent
Description: Where good people build rewarding careers.Think that working in the insurance field can't be exciting, rewarding and challenging Think again. You'll help us reinvent protection and retirement to improve (more...)
Company: Allstate
Location: Charlotte
Posted on: 08/24/2019


Splunk Security Engineer
Description: We are unable to sponsor for this permanent full-time role Prestigious Fortune 500 Company is currently seeking a Splunk Security Engineer. Candidate will be architecting and deploying Splunk Enterprise (more...)
Company: Request Technology, LLC
Location: Charlotte
Posted on: 08/24/2019

Facilities Technician I
Description: Client Reference Code: 231665JOB TITLE: Facilities Technician IJOB SUMMARYThis position is responsible for performing day-to-day operations and maintenance of all facilities/grounds in the assigned area (more...)
Company: Spectrum
Location: Charlotte
Posted on: 08/24/2019

Senior Infrastructure Engineer
Description: Evolution Staffing is looking for an Senior Infrastructure Engineer for a fulltime
Company: Evolution Staffing LLC
Location: Greensboro
Posted on: 08/24/2019

Mobility Engineer
Description: ul li Mobility Engineer will take Apple Business Manager through the On-Boarding process to get Legal, Compliance and Security approval for the use of Apple Business Manager at AIG. The Engineer (more...)
Company: Modis
Location: Charlotte
Posted on: 08/24/2019

Network Security Engineer Expert
Description: Where good people build rewarding careers.Think that working in the insurance field can't be exciting, rewarding and challenging Think again. You'll help us reinvent protection and retirement to improve (more...)
Company: Allstate
Location: Charlotte
Posted on: 08/24/2019

Controls Engineer
Description: OverviewGet your logistics together. Evolve here. br br Schaefer Systems International provides storage, materials handling, logistics and waste technology solutions to businesses throughout North (more...)
Company: Schaefer Systems
Location: Charlotte
Posted on: 08/24/2019

Deployment Engineer
Description: RESPONSIBILITIES ul ul ul li Develop, analyze, and maintain tools to support and automate processes for multiple product releases, including build and deployment automation, configuration, and (more...)
Company: Zenmonics
Location: Charlotte
Posted on: 08/24/2019

Log In or Create An Account

Get the latest North Carolina jobs by following @recnetNC on Twitter!

Charlotte RSS job feeds