About the Position

The Senior Malware Analyst position is critical for the success of the 100% Attestation service that is one of the key features of the Adaptive Defense platform at WatchGuard Technologies. The Senior Malware Analyst plays a key role and is responsible for the classification of the files that are blocked in the clients and that the machine learning models have labeled as high risk.

The ideal candidate for this position should have knowledge of malware analysis, have analyzed 1,000+ malware files in their career, and knowledge in reverse engineering of binaries. Previous experience in similar position is desired and the candidate should be able to analyze malicious and benign files and have knowledge of different programming languages and a technical background in cyber security.

This is a great opportunity for someone who loves malware analysis and reversing, who wants a career in cyber security and who wants to deal with the most challenging and current cyber threats attacking organizations. If you are passionate about Malware analysis and cyber-security, have experience with reverse engineering of malware, know about vulnerabilities and hacking methods, are up to date with cyber-threats and can analyze and understand Malware code, this is the position you are looking for.

This role reports directly to the Attestation Service Manager. If you are looking for a challenge and you are enthusiastic, self-motivated, and want to grow as a Malware Analyst, WatchGuard has the perfect role for you!

A Day in the Life

As part of the attestation team for Adaptive Defense, the Malware Analyst is responsible for classifying files from clients that require expert human malware analysis. This role will help determine if the files are malicious or benign. This role will also require analysation and stay up-to-date with current malware trends.

30/60/90 Plan

Initially there is a lot of learning for the first 90 days primarily centered on WatchGuard's Malware Analyst: 

  • 0 - 30 days –  High level training. What is WatchGuard, basic malware analysis, learning the systems involved in the daily tasks of the team.
  • 30 - 60 days – Training continues, transfer initial malware analysation responsibilities . Training will involve advanced malware analysis and the consoles used to analyze, detect malware and do the daily classification work.
  • 60 - 90 days  – Full malware analysation responsibilities transferred. Start working on classifying files and detecting malware from clients with the rest of the team, supervised by a senior team member.

Position Responsibilities

  • Proven track record of analyzing 1,000+ malware files
  • Classification of files into malicious or benign
  • Join the malware analyst team with direct access to the best reversing engineers in the business
  • Analyze and detect the latest malware
  • Identification of PUPs (Potentially Unwanted Programs)
  • Goodware application classification
  • Analyze new trends and techniques used by malware and cyber criminals
  • Study the attack methods of new critical malware
  • Define new rules and technologies for malware identification to improve automatic classification systems based on machine learning
  • Improve client protection
  • Create technical reports on new critical malware for distribution to technical audiences
  • Continuous learning and continuous technical knowledge improvement
  • Participate in the most interesting technological projects and continuous challenges
  • Maintain an excellent working environment

Skills and Qualifications

  • Proven track record of analyzing 1,000+ malware files
  • Malware analysis and reverse engineering
  • Reverse engineering tools such as IDA Pro, OllyDBG, WinDBG, Radare, Hydra
  • Knowledge of other malware analysis tools
  • Knowledge of Sysinternal tools such as Sysmon, Autoruns, ProcMon, RegMon, diskMon, TCPView or OS Logs (Syslogs / EventViewer) for dyanmic analysis of malware
    • Development of extensions and scripts for these tools
  • Knowledge of Windows, APIs, Windows user-space and kernel-space
  • Virtualization and emulation
  • Familiarity with low level programming languages such as  C / C ++ 
  • Knowledge of other programming and scripting languages ​​(Python, .NET, Java, Javascript, VBscript, powersell, etc)
  • Additional knowledge on other platforms will be valued: iOS and Android
  • Penetration testing and ethical hacking knowledge is a plus

 Experience

  • Bachelor’s degree in Cybersecurity, Computer Science, or related field preferred
  • Proven track record of analyzing 1,000+ malware files
  • Minimum of 5 - 8 years of experience required
  • Experience working with malwares in a lab
  • Excellent communication skills, both written and oral
  • Experience cybersecurity and network technologies
  • Working as a part of a team with shared goals
  • Work under an SLA
  • Reversing malware and programming

Why Work for WatchGuard?


At WatchGuard we create smart security, simply done. We’re a leader in building cyber security hardware, wireless, and cloud solutions that protect small and midsize businesses, and distributed enterprises worldwide. Our award-winning network security solutions provide layered, enterprise-grade protection that is easy to deploy and manage. Whether you are an industry veteran, or at the beginning of your career, now is an amazing time to work in the security industry, and there’s never been a better time to be at WatchGuard.


We love solving the industry’s toughest challenges, and our innovation keeps our customers ahead of increasingly sophisticated hackers, which has fueled record revenues. We’re heavily reinvesting in the company and driving rapid acceleration across all aspects of our business. As a result, our employee base has nearly doubled in the last three years, organically and through acquisition. 


Our company culture places intense focus on our customers and employees. From the newest employee to our CEO, you'll find that each person at WatchGuard embodies our core values: accountability, passion for success, community building, and maintaining a customer focus in all things. 


 WatchGuard Technologies is privately backed by equity firms Vector Capital and Francisco Partners, and has headquarters in Seattle, Washington, with offices throughout North America, Europe, Asia Pacific, and Latin America.


As an Equal Opportunity Employer, we are committed to a diverse workforce. 


More from WatchGuard Technologies
Software Engineer
WatchGuard Technologies 5 days ago
Senior Software Development Engineer (S SDE)
WatchGuard Technologies 5 days ago
Senior Software Engineer
WatchGuard Technologies 5 days ago
Apply