Skip Navigation

Exploit Prevention Researcher

Primary Location Bangalore, Karnataka Date posted 09/11/2020
Apply Now Job ID: JR0020608

Job Title:

Exploit Prevention Researcher


Location:

India, Bangalore

Role Overview:

This research position is with Anti-Malware Research, R&D department of McAfee Lab who is one of the leaders in malware detection, threat intelligence and malware detection technologies. The role works closely with the exploit prevention product to ensure its effectiveness in detection, cleaning and improved performance of the integration of anti-malware technologies in McAfee products. Being the first line of defense and support the research experts in the McAfee Lab team to provide coverage for the widely exposed exploits seen in the wild. 
Role is an individual contributor dedicated to analysis and reverse engineering of malware, improving protection quality of exploit prevention product, threat intelligence, and driving existing and new improvement initiatives and ideas. The role also involves investigating new exploit / infection methods and also provide detection as well to keep the protection level up-to-date, thus promoting the image of McAfee products as the ultimate leader in anti-malware protection.



Company Overview

From device to cloud, McAfee provides market-leading cybersecurity solutions for both business and consumers. We help businesses orchestrate cyber environments that are truly integrated, where protection, detection, and correction of security threats happen simultaneously. For consumers, McAfee secures your devices against viruses, malware, and other threats, both at home and away. We want to continue to shape the future of cybersecurity by working together to build best in class products and solutions.

Malware Analysis and Detection

  • Awareness of threats around the globe, regional threats and top adversaries / criminal groups focusing on malware including affiliate networks
  • Exploits, ROP chains, Buffer overflow Protection, network intrusion inspection
  • Process incoming requests from customers and Support team regarding malware analysis and detection
  • Provide an analysis for sophisticated threats including the full attack chain - infection, propagation, lateral movement, exploitation POCs, etc
  • Be able to extract malicious patterns from an object and author effective detection rule

Malware Incident Handling

  • Participate in the incident response process on need basis
  • Provide fast and thorough analysis of the attack chain including infection vector, payload, propagation, etc.
  • Support clear and concise communications during malware incidents
  • Prepare analysis of an incident, remediation instructions, and assist a customer if needed
  • Ensure fast and reliable malware analysis suitable for initial assessment of malware impact and, where appropriate, suitable for creating cutting-edge PR stories, using local and global team resources 

Skillset:

Essential

  • B.Sc. or higher degree in either Computer Science, Information Technology or related subjects
  • Advanced level experience within security industry involving exploit analysis, vulnerability analysis, reverse engineering.
  • Strong reverse engineering skills, fuzzying, windows debugging
  • Extensive understanding of MITRE defined Tactics and Techniques usage with a variety of tools.
  • Understanding of PE32/PE64 files analysis
  • Understanding of x86 and x86-64 assembler
  • Knowledge of Windows OS internals - memory, threads, processes, API, etc.
  • Proficiency in disassemblers and debuggers usage (IDA Pro, HIew, WinDbg, OllyDbg, etc.)
  • Knowledge and understanding of file formats and network protocols
  • Experience with network traffic analysis tools (Wireshark, Fiddler)
  • Analysis and reversing of source codes compiled in different programming languages
  • In-Depth Programming experience in C, Python
  • Networking and Networking protocols
  • Desire to develop in the field of information security, to study and apply new technologies
  • Good communication skills

Additional

  • Knowledge of C++ or Perl programming languages
  • Real experience of sophisticated threats analysis - file-less attacks, ransomware, banking trojans, exploits, etc.
  • Penetration testing/red teaming experience, knowledge of corresponding tools and techniques
  • Understanding of Linux, MacOS malware and its threat landscape

Malware Analysis and Detection

  • Awareness of threats around the globe, regional threats and top adversaries / criminal groups focusing on malware including affiliate networks
  • Exploits, ROP chains, Buffer overflow Protection, network intrusion inspection
  • Process incoming requests from customers and Support team regarding malware analysis and detection
  • Provide an analysis for sophisticated threats including the full attack chain - infection, propagation, lateral movement, exploitation POCs, etc
  • Be able to extract malicious patterns from an object and author effective detection rule

Malware Incident Handling

  • Participate in the incident response process on need basis
  • Provide fast and thorough analysis of the attack chain including infection vector, payload, propagation, etc.
  • Support clear and concise communications during malware incidents
  • Prepare analysis of an incident, remediation instructions, and assist a customer if needed
  • Ensure fast and reliable malware analysis suitable for initial assessment of malware impact and, where appropriate, suitable for creating cutting-edge PR stories, using local and global team resources 

Skillset:

Essential

  • B.Sc. or higher degree in either Computer Science, Information Technology or related subjects
  • Advanced level experience within security industry involving exploit analysis, vulnerability analysis, reverse engineering.
  • Strong reverse engineering skills, fuzzying, windows debugging
  • Extensive understanding of MITRE defined Tactics and Techniques usage with a variety of tools.
  • Understanding of PE32/PE64 files analysis
  • Understanding of x86 and x86-64 assembler
  • Knowledge of Windows OS internals - memory, threads, processes, API, etc.
  • Proficiency in disassemblers and debuggers usage (IDA Pro, HIew, WinDbg, OllyDbg, etc.)
  • Knowledge and understanding of file formats and network protocols
  • Experience with network traffic analysis tools (Wireshark, Fiddler)
  • Analysis and reversing of source codes compiled in different programming languages
  • In-Depth Programming experience in C, Python
  • Networking and Networking protocols
  • Desire to develop in the field of information security, to study and apply new technologies
  • Good communication skills

Additional

  • Knowledge of C++ or Perl programming languages
  • Real experience of sophisticated threats analysis - file-less attacks, ransomware, banking trojans, exploits, etc.
  • Penetration testing/red teaming experience, knowledge of corresponding tools and techniques
  • Understanding of Linux, MacOS malware and its threat landscape

Company Benefits and Perks:

We work hard to embrace diversity and inclusion and encourage everyone at McAfee to bring their authentic selves to work every day. We offer a variety of social programs, flexible work hours and family-friendly benefits to all of our employees.

  • Pension and Retirement Plans
  • Medical, Dental and Vision Coverage
  • Paid Time Off
  • Paid Parental Leave
  • Support for Community Involvement

We're serious about our commitment to diversity which is why McAfee prohibits discrimination based on race, color, religion, gender, national origin, age, disability, veteran status, marital status, pregnancy, gender expression or identity, sexual orientation or any other legally protected status.

Job Type:

Experienced Hire

Primary Location:

India, Bangalore


Additional Locations:

Apply Now

Sign Up for McAfee Job Alerts

Form

Get the latest job openings delivered to your inbox.

Interested InSelect a job category from the list of options. Select a location from the list of options. Finally, click “Add” to create your job alert.

What's Happening
at
McAfee?

Check out #LifeAtMcAfee

Explore our Blog