Malware Reverse Engineering Manager

The Malware Forensics Manager will be responsible for the management of 8-13 malware who are responsible for conducting malware analysis, reverse engineering software development, and other forensic activities spanning the cyber-attack lifecycle, from the initial exploit and malware execution path to callback destinations and follow-on binary download attempts. This individual will be responsible for leading intrusion investigations, managing incident responders, briefing technical findings to leadership, and ensuring all tasks are accomplished.

As the manager, responsibilities include interviewing, selection and hiring; training new and existing employees; planning, assigning and directing work; addressing employee performance and corrective action plans; employee motivation and rewards. This person will serve as a key member of the forensics management team, who will work with other team leaders and task areas to:

Clarify/resolve process-related activities for technical team.
• Monitor and report progress against plans through final acceptance and signoff.
• Manage, coordinate, and resolve project issues, decisions, and risks.

If the candidate is already on the program, the candidate will maintain Individual Contributor (IC) role. If the candidate is not, then the individual would also need to be selected for an open IC role.

*This position requires full-time, onsite attendance Monday through Friday in the Baltimore metropolitan area.

Qualifications:

• Requires BA/BS in Computer Science, Cybersecurity, Data Science, Information System, Information Technology or Software Engineering with 12 years of experience (may have supervisory or lead experience)
• Requires an active Top Secret clearance with SCI eligibility
• Possession of at least one of the following active certifications: GIAC Certified Forensic Analyst (GCFA), GIAC Certified Incident Handler (GCIH), CyberSec First Responder (CFR), Cybersecurity Analyst+ (CySA+), or an equivalent certification
• A minimum of seven (7) years of hands-on experience in Digital Forensics and Incident Response (DFIR), with at least five (5) years of that experience focused on network intrusion analysis, malware forensics, and memory analysis.
• A minimum of three (3) years of experience within the last five years in a leadership or supervisory role, responsible for leading intrusion investigations, managing incident responders, and briefing technical findings to leadership.
• Demonstrated experience within the last three years analyzing advanced persistent threat (APT) activity and correlating findings from multiple data sources (e.g., host forensics, network logs, and threat intelligence)
• Demonstrated strong written and verbal communication skills
• Demonstrated strong customer and partner relationship building skills

Desired Qualifications:

• Experience performing digital and multimedia forensics examinations, analysis, and techniques.
• Experience working with MS Windows, Apple/UNIX, and Linux operating systems related to forensics examinations.
• Experience with forensic network analysis in support of the investigative process.
• Experience within the last seven years analyzing endpoint, Packet Capture (PCAP) data, and other relevant data sources.

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can't be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we're keeping people around the world safe and secure.