Senior Cyber Crime Intelligence Analyst (technical) - (Remote US)
- Arlington, VA, USA
- Employees can work remotely
Mandiant Intelligence’s Financial Crime team identifies, tracks, and reports on financially-motivated threat actors impacting organizations across the globe. This work supports corporate and government intelligence clients as well as other divisions of FireEye. The Technical Analyst will play an important role on our team, leading the investigation and analysis of these operators. An emphasis will be placed on the identification of novel and impactful malware campaigns and intrusion activity. The successful candidate is a seasoned analyst capable of interpreting vast quantities of data from various sources and communicating those findings to both internal and external stakeholders. We encourage giving back to the community and strongly support sharing of expertise by authoring whitepapers and speaking at conferences.
Identify, assess, and track the tactics, techniques, and procedures of financially motivated threat actors using the unique data produced across all of FireEye and via your own independent research
Perform technical analysis on malicious or suspicious artifacts, attacker infrastructure, and forensic data sourced from organizations impacted by some of the world’s most capable cyber criminals
Stay current on new malware families, new capabilities and public reporting on these issues
Support the creation of custom analytic products for internal and external stakeholders based on conclusions and judgments derived from FireEye’s proprietary datasets and the analyst’s independent research
Work independently and collaborate with individuals throughout the FireEye organization to develop and coordinate the production of intelligence product
Strong understanding of cyber crime threats and the cyber criminal ecosystem
Understanding of the tools and tactics used to distribute malware
Experience analyzing malicious binaries, office files, pdf and jar files, reviewing automated sandbox reports, and reviewing network packet captures
Comfortable with scripting languages (e.g. Python, Ruby, or other)
Ability to write Yara and Snort signatures for the purpose of identifying and classifying malware
Ability to communicate complex technical concepts to non-technical people
Possesses deep subject matter expertise on several different cybercrime malware families and/or threat actors, including how they have evolved over time
Practical experience as an intelligence analyst
History of participation in industry or technology information sharing groups, formal or informal
Understanding of monetization and fraud strategies employed by cyber threat actors
Comfortable independently interacting with external audiences
4+ years experience working with malware or exploits, or engaged in either threat research or incident handling
Experience interpreting and analyzing telemetry data produced by endpoint, network, and email security infrastructure
Foreign language skills in Russian, Chinese, Arabic, Farsi, and/or other major European languages
At FireEye we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.
(For candidates applying from Colorado, the following applies*)
Minimum Salary: $110,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations.
Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from FireEye’s Compensation Committee, and vesting terms
Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, FireEye also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. FireEye also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.
*Disclosure as required by sb19-085 (8-5-20)