Shuvel Digital

1469 - Vulnerability Research/Reverse Engineer

Clearance Level: TS/SCI

US Citizenship: Required

Job Classification: Regular Full-time

Location: JBSA - Lackland

Years of Experience: 5-7

Education Level: Bachelors

Position Description: Global InfoTek Inc., is looking for an experienced Vulnerability Researcher/Reverse Engineer to analyze and/or reverse engineer the behavior of potentially malicious code using both static and dynamic tools and techniques and conduct detection and analysis of malware and malware communication techniques in support of a cyber investigations/counterintelligence agency. A successful candidate will research for the purposes of finding new vulnerabilities and enhance existing capabilities.

  • Analyze and/or reverse engineer the behavior of potentially malicious code using both static and dynamic tools and techniques – author technical reports of findings.
  • Conduct detection and analysis of malware and malware communication techniques.
  • Identify potential operational opportunities while conducting reverse engineering actions.
  • Solve challenging problems in the realm of vulnerability analysis and exploitation.
  • Conduct research for the purposes of finding new vulnerabilities and enhance existing capabilities.
  • Use various websites and YARA signatures and provide reports on active cyber threats and their location on the web – find threats, provide invaluable information on adversary’s TTPs and recommendations on how to proceed.
  • Collect and maintain a catalog of malware for retroactive analysis.
  • Participate in the development of R&D prototypes.

Required Technical Skills

  • 5-7 years of reverse engineering experience within the last five years, and at least six years of malware analysis, technical analysis, military intelligence, DNI, or SIGINT experience.
  • Demonstrated competency with disassemblers/decompilers such as IDA Pro, Ghidra, Radare, or Binary Ninja.
  • Strong aptitude with software debuggers using tools such as WinDbg, OllyDbg, ImmunityDbg, x64 Debugger, GDB, KGDB, NTSD, IDA Debugger, or other similar tools.
  • In-depth knowledge of x86/64, ARM and MIPS instruction sets and architectures and MZ/PE, ELF, APK, and IPS file formats.
  • Ability to write custom tools to aid in deeper analysis of a sample, such as lifting/executing target code using software-based CPU emulators, decoding custom network protocols, and emulating false C2.
  • Proficiency in one or more programming or scripting languages such as C, C++, Java, Assembly, Python, Perl, Ruby, Bash, Node.js, Spark, Puppet, SALT, KAFKA, HADOOP, etc

Desirable Skill

  • Bachelor’s or master’s degree in Computer Science, Software Engineering, Cybersecurity, or related discipline from an accredited institution in addition to the required experience.
  • Certifications such as SANS GREM, GCFA; IACRB CREA; eLearn Security eCRE; Offensive Security OSCE, OSEE, or other similar technical certifications.
  • Proficiency in three or more of the above programming or scripting languages

Global InfoTek, Inc. is an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, or national origin.

About Global InfoTek, Inc. Reston, VA-based Global InfoTek Inc. is a woman-owned small business with an award-winning track record of designing, developing, and deploying best-of-breed technologies that address the nation’s pressing cyber and advanced technology needs. For more than two decades, GITI has merged pioneering technologies, operational effectiveness, and best business practices to rapidly provide low-cost, agile solutions to DoD, DHS, and IC customers. In addition to its Reston office, GITI has operations in San Antonio, TX, Colorado Springs, CO, and Rome, NY.

%FOOTER_POWERED_BY%breezy