Malware Reverse Engineer (Remote US)

  • Location:
    Offsite, San Francisco, California, US
  • Alternate Location
    Remote, US
  • Area of Interest
  • Compensation Range
    160300 USD - 232900 USD
  • Job Type
  • Technology Interest
  • Job Id
Location:  This position can be fully Remote in the United States.
TALOS wants YOU! Cisco Talos is one of the largest commercial threat intelligence teams in the world, comprised of world-class researchers, analysts, and engineers. With our industry-leading visibility, actionable intelligence, and vulnerability research, we drive rapid detection and protection for Cisco customers against known and emerging threats and stop threats in the wild to protect the internet at large.
 Who You Are:
As a Malware Reverse Engineer, you will work with a team of experts creating detections to defend Cisco's customers. This team researches malware and is responsible for creation of detection content for the technologies TALOS supports. You will enable and improve the flow of actionable information from multiple sources to the team so that detection content can be created quickly and efficiently to defend our customers.  The sources include, but are not limited to, Talos' own internal threat intelligence, vulnerability development and outreach teams, as well as external sources as diverse as threat / vulnerability feeds, customer coverage requests, and incident response engagements. The team acts as a trusted security partner both within TALOS and beyond. 

What You'll Do:Role and Responsibilities:
  • Research malware families, trends and newly emergent threats
  • Statically and dynamically analyze malware in order to have an understanding of how it operates
  • Write detection content that powers Cisco devices
  • Ensure work performed aligns with team’s goals as collaboratively determined with TALOS Management
  • Guide the development efforts of the team, in terms of both small tools and major automation efforts
  • Mentor junior reverse engineers
Minimum Qualifications:
  • Five years of work experience in the security industry
  • Superb organization, decision making, as well as both verbal and written communication skills
  • A history of working well across multiple diverse organizations towards a common goal
  • Skill in bridging the gap between researchers and platform development teams
  • Basic knowledge of networking, transport, and application layer protocols
  • Familiarity with vulnerability analysis and common methods of exploitation
  • Ability to work independently with minimum supervision and take on additional tasks as required
  • Ability to work with small teams as well as across teams to solve complex problems
  • Typically, Bachelors + 8 years of related experience or Masters + 6 years of related experience.  Or equivalent experience.  
Preferred Qualifications:
  • 5+ Years of technical management experience, preferably in the cybersecurity field
  • Completion of, or familiarity with the value of, degrees, certifications, military experience, etc.
  • Knowing that knowing is half the battle
  • Expert understanding of malware and the threat landscape
  • Expert knowledge of disassemblers, Ghidra and/or IDA Pro
  • Expert knowledge of debuggers
  • Expert knowledge of Windows 10/11 and/or Linux and/or MacOS
  • Expertise in Python scripting
Work Conditions:
  • Works closely with research analysts to quickly develop detection content for all our core applications
  • Moderate to high levels of stress may occur at times
  • Fast paced and rapidly changing environment
  • Extremely talented and experienced team members and mentors
  • No special physical requirements
  • Constant internal training, heated discussions, ice cream and libations
Why Cisco Secure#WeAreCisco, where each person is unique. We bring our talents to work as a team each day, helping power an inclusive future for all. Get to know us!We're global, we're adaptable, we're diverse, and our security portfolio is as extensive as it is groundbreaking. Have you heard of Threat, Detection & Response, Zero Trust by Duo, Common Services Engineering, or Cloud & Network Security? Those are only a few of our product teams! The only thing we're missing is YOU.
Join an enterprise security leader with a start-up culture, committed to driving innovation and giving you the opportunity to make an impact. We #InnovateToWin and we know we're better together, that's why we're dedicated to inclusivity, collaboration, and diversity in everything we do.
We're proud to be the Best Security Company in 2021 with the Best Authentication Technology and the Best Small and Mid-Size Enterprises Security Solution in 2022 by SC Media. Cisco Secure continues to grow and evolve year after year with 100% of Fortune 100 Companies using our products, and we're excited to see the new heights we'll reach with your passion for security, your customer focus, and your desire to change things up!
What else can you expect? An ongoing investment in your growth-that's why we offer many employee resource groups (called Inclusive Communities), mentorship programs, and hundreds of learning resources to consistently level up your skillset and explore your interests. Because when you succeed, we succeed!
"Cisco Secure offers an environment that combines cutting-edge, mission-critical, technology with some of the brightest, most diverse set of people I've ever had the pleasure of working with." - Chief of Staff, EngineeringJoin Cisco Secure - Be You, With Us!
Message to applicants applying to work in the U.S.:
When available, the salary range posted for this position reflects the projected hiring range for new hire salaries in U.S. locations. For non-sales roles, the hiring ranges reflect base salary and do not include bonuses, equity, or benefits. Hiring ranges for sales positions include base and incentive target, and do not include equity or benefits. Individual pay is determined by the candidate's hiring location and additional factors, including but not limited to skillset, experience, and relevant education, certifications or training. Applicants may not be eligible for the full salary range based on their U.S. hiring location. The recruiter can share more details about compensation for the role in your location during the hiring process.