Репутація українського ІТ. Пройти опитування Асоціації IT Ukraine
Hi, We are Clario, a consumer-focused cybersecurity company on a mission to change an industry. Over 800 professionals, including 600 digital security experts, with one common goal — supporting everyone’s right to a digital life, secured. We’re here to create a next-generation digital security solution with a human touch.
21 октября 2020

Malware Analyst (Junior | Trainee) (вакансия неактивна)

Киев, удаленно

Hi, We are Clario, a consumer-focused cybersecurity company on a mission to change an industry. Over 800 professionals, including 600 digital security experts, with one common goal — supporting everyone’s right to a digital life, secured. We’re here to create a next-generation digital security solution with a human touch.

Join us and help people take back control of their digital privacy and security.

About our product

Our product, with its intuitive and engaging UX design, has been specifically created to promote better digital safety through enhanced ease of use. It gives real-time protection against digital threats, money loss, breaches of personal information and identity theft, device security, data privacy, and more. It will initially be focused on meeting the needs of Apple customers through apps designed for both macOS, iOS and Android. Later, it plans to support Windows.
What we’re offering goes beyond software. We combine the latest advances in digital security with tech experts on hand 24/7 to help our customers where technology fails.

What you will be doing:

1. Examination of different types of malicious software:

• Application bundles;
• Safari(.safariextz, appex)/Chrome/Firefox extensions;
• mach-o binaries;
• bash/java/apple;
• pkg installers;

with the usage of the toolset that allows getting info on the behavior of such software in a controlled environment:
• xnumon, kemon, appmon, dtrace, dtruss;
• WireShark, Hopper, tcpdump, mitmproxy, tshark tools;

as well as various python-based packages and terminal commands to get static characteristics of the samples.

2. Working with reports created by the automated malware analysis systems aka Cuckoo sandbox, Joe Sandbox, etc.

3. Creating signatures that described malicious samples with the usage of the next tools:

• Yara, yargen, Klara, mquery tools, fuzzy hashing algorithms, Jira JQL for finding similar samples;
• VirusTotal, MISP, VirusShare, VirusBay;
• Splunk, ELK;
• MongoDB, SQLite, etc databases.

4. Work on automation and new tools for malware analysis purposes.

What you need for this position:

• Understanding macOS structure, and macOS security hardening;
• Experience with IDA, Ghidra, or any other reverse engineering tools;
• Understanding Digital forensics concepts, ability to find malicious actors on the macOS system. Strong understanding of TTP (Techniques, Tactics and Procedures) used by threat actors;
• Ability to create IOC (Indicators of compromise) for detecting malicious actors. Using Yara, yargen, Klara, mquery tools, fuzzy hashing algorithms, Jira JQL for finding similar samples;
• Ability to automate sample analysis by creating automation scripts on Python/bash/Applescript;
• B1 level of English (both written and spoken).

Nice to have/know:

• Ability to work with automated malware analysis reports from Cuckoo sandbox, Joe Sandbox, etc;
• Ability to perform static sample analysis(python packages and terminal commands for extraction static characteristics, etc.);
• Dynamic samples analysis: Monitor app, Fortiappmonitor, xnumon, kemon, appmon, dtrace, dtruss;
• Ability to analyze network traffic by using WireShark, Hopper, tcpdump, mitmproxy, tshark tools;
• Experience in work with threat hunting platforms like VirusTotal, MISP, VirusShare, VirusBay;
• Experience in work with big data platforms (Splunk, ELK) for detecting malicious patterns and threat hunting.
• Experience in work with MongoDB, SQLite, etc databases;
• Basic knowledge of OS virtualization tools: VMWare, ESXI, qemu, Virtual Box. Docker containerization.


What we offer for your success:

• Comfortable working conditions
Very warm and friendly working environment with a flexible working schedule. Cozy office space located close to the metro station and equipped with everything necessary to allow you to work comfortably. Restaurant, game zone, and sleeping room in the office. 20 days off paid by the company, per year. One-off relocation support for candidates from other cities.
• Sport and healthcare
Lunch compensation, corporate doctor, medical insurance, and health protection programs. Sports activities in the office gym with a personal coach (yoga, boxing, etc.).
• Growth and development
Continuous professional development and growth opportunities. Challenging work in an international environment. External and internal professional training and certifications. English classes in the office.

We are not just a company, we are Clario! We put the customer at the heart of all that we do, we achieve our best together, take responsibility, and challenge our limits to create a difference!

To apply for this position, please send your CV (in English only) with a detailed description of your career, experience, skills, and projects. We guarantee the privacy of any information received.

LET’S GO TOGETHER!

Горячие вакансии

Все вакансии