Sentar Inc.
Malware Analyst SME – Sentar Inc.
Sentar Inc. is dedicated to developing critical talent that the connected world demands to create solutions to address the convergence of cybersecurity, intelligence, analytics, and systems engineering. Join the small business team where you can build, innovate, and secure your career.
Role Description Sentar is seeking a Malware Analyst SME to support an active government contract providing Cyber Security Service Provider (CSSP) functions. This position will support the government's mission to disrupt, deny, and degrade network adversaries’ ability to disrupt the IT services provided to network users.
The contractor will provide staff to conduct analysis of digital evidence to support computer security incidents to derive useful information in support of system/network vulnerability mitigation. Contractor staff will support incident investigation by employing appropriate techniques in surface analysis, runtime analysis, and static analysis of suspected malware. The contractor shall adhere to the procedures outlined in CJCSM 6510.01B, “Cyber Incident Handling Program.” Additionally, the contractor shall support the development of new detection capability by integrating the results of malware and forensic analysis tasks into new and existing detection use cases to prevent future occurrences. The contractor is responsible for maintaining currency as data sources, analysis tools, and techniques evolve in the technical computing environment as well as by mandates from higher echelon organizations.
Responsibilities
Perform technical analysis or malicious binaries through controlled execution and/or static analysis of assembly code to ascertain functionality, capability, callbacks, assist with attribution to adversary infrastructure, and identify indicators of compromise.
Write and produce high quality technical reports related to the scope, nature, and characteristics of malicious software suitable for distribution to both technical and non-technical audiences.
Qualifications
Bachelor’s Degree in Computer Science or IT related field or at least five years of demonstrated experience with DCO tools, tactics, and techniques in a large enterprise environment.
At least five years of experience performing malware analysis.
Possess DoDD 8570 IAT Level III certification (CASP+, CCNP Security, CISA, CISSP, GCED, GCIH, CCSP).
Possess DoDD 8570 CSSP Incident Responder certification (CEH, CFR, CCNA Cyber Ops, CCNA Security, CHFI, CySA+, GCFA, GCIH, SCYBER, PenTest+).
GIAC Reverse Engineering Malware (GREM) or equivalent industry certification within 180 days of start.
Experience handling national state level intrusions.
Additional Skills
Experience with malware analysis using static and dynamic analysis tools, including disassemblers, debuggers, and virtual machines.
Experience with monitoring threats through Tools, Techniques, and Procedures and how they relate to the MITRE ATT&CK framework.
Experience with Windows internals such as the Windows Application Interface (APIs), processes, threads, and the registry.
Experience with Linux and comfortable traversing the terminal.
Knowledge of common attacker methodologies and exploit techniques.
Knowledge of network protocols and networking concepts.
Knowledge of x86 and x64 instruction set architectures.
Ability to analyze shellcode, packed and obfuscated code.
Clearance Level: TS/SCI
Benefits at Sentar
Voluntary Medical, Dental, Vision, with Health Savings or Flexible Spending Plan options
Voluntary Life, Critical Illness, Accident, and Long Term Care insurance options
Group Term Life, Short-Term and Long-Term Disability provided by Sentar to all qualifying employees
Generous 401(k) match
Competitive PTO plan that graduates quickly with years of service
Other leave programs; holiday schedule along with bereavement, maternity, jury and military duty
Mental health awareness programs
Tuition reimbursement
Professional development reimbursement
Recognition and Awards programs
Equal Opportunity and EEO Statement Sentar is an Equal Opportunity and Equal Pay Employer. Sentar is a VEVRAA Federal Contractor Employer M/F/Vets/Persons with Disabilities. Sentar follows all applicable EEO and affirmative action laws. Refer to the EEO Is the Law Poster, EEO Is Law Supplement, and Pay Transparency for more information. If you require a reasonable workplace accommodation, contact the Recruiting Manager at recruiting@sentar.com and indicate the specifics of the assistance needed. Sentar is committed to providing a positive and inclusive work environment for all employees.
Build, Innovate, Secure Your Career at Sentar.
#J-18808-Ljbffr
Role Description Sentar is seeking a Malware Analyst SME to support an active government contract providing Cyber Security Service Provider (CSSP) functions. This position will support the government's mission to disrupt, deny, and degrade network adversaries’ ability to disrupt the IT services provided to network users.
The contractor will provide staff to conduct analysis of digital evidence to support computer security incidents to derive useful information in support of system/network vulnerability mitigation. Contractor staff will support incident investigation by employing appropriate techniques in surface analysis, runtime analysis, and static analysis of suspected malware. The contractor shall adhere to the procedures outlined in CJCSM 6510.01B, “Cyber Incident Handling Program.” Additionally, the contractor shall support the development of new detection capability by integrating the results of malware and forensic analysis tasks into new and existing detection use cases to prevent future occurrences. The contractor is responsible for maintaining currency as data sources, analysis tools, and techniques evolve in the technical computing environment as well as by mandates from higher echelon organizations.
Responsibilities
Perform technical analysis or malicious binaries through controlled execution and/or static analysis of assembly code to ascertain functionality, capability, callbacks, assist with attribution to adversary infrastructure, and identify indicators of compromise.
Write and produce high quality technical reports related to the scope, nature, and characteristics of malicious software suitable for distribution to both technical and non-technical audiences.
Qualifications
Bachelor’s Degree in Computer Science or IT related field or at least five years of demonstrated experience with DCO tools, tactics, and techniques in a large enterprise environment.
At least five years of experience performing malware analysis.
Possess DoDD 8570 IAT Level III certification (CASP+, CCNP Security, CISA, CISSP, GCED, GCIH, CCSP).
Possess DoDD 8570 CSSP Incident Responder certification (CEH, CFR, CCNA Cyber Ops, CCNA Security, CHFI, CySA+, GCFA, GCIH, SCYBER, PenTest+).
GIAC Reverse Engineering Malware (GREM) or equivalent industry certification within 180 days of start.
Experience handling national state level intrusions.
Additional Skills
Experience with malware analysis using static and dynamic analysis tools, including disassemblers, debuggers, and virtual machines.
Experience with monitoring threats through Tools, Techniques, and Procedures and how they relate to the MITRE ATT&CK framework.
Experience with Windows internals such as the Windows Application Interface (APIs), processes, threads, and the registry.
Experience with Linux and comfortable traversing the terminal.
Knowledge of common attacker methodologies and exploit techniques.
Knowledge of network protocols and networking concepts.
Knowledge of x86 and x64 instruction set architectures.
Ability to analyze shellcode, packed and obfuscated code.
Clearance Level: TS/SCI
Benefits at Sentar
Voluntary Medical, Dental, Vision, with Health Savings or Flexible Spending Plan options
Voluntary Life, Critical Illness, Accident, and Long Term Care insurance options
Group Term Life, Short-Term and Long-Term Disability provided by Sentar to all qualifying employees
Generous 401(k) match
Competitive PTO plan that graduates quickly with years of service
Other leave programs; holiday schedule along with bereavement, maternity, jury and military duty
Mental health awareness programs
Tuition reimbursement
Professional development reimbursement
Recognition and Awards programs
Equal Opportunity and EEO Statement Sentar is an Equal Opportunity and Equal Pay Employer. Sentar is a VEVRAA Federal Contractor Employer M/F/Vets/Persons with Disabilities. Sentar follows all applicable EEO and affirmative action laws. Refer to the EEO Is the Law Poster, EEO Is Law Supplement, and Pay Transparency for more information. If you require a reasonable workplace accommodation, contact the Recruiting Manager at recruiting@sentar.com and indicate the specifics of the assistance needed. Sentar is committed to providing a positive and inclusive work environment for all employees.
Build, Innovate, Secure Your Career at Sentar.
#J-18808-Ljbffr