Reverse Engineer

Halcyon Logo

Halcyon

πŸ“Remote - Worldwide

Summary

Join Halcyon, a leading cybersecurity company focused on preventing ransomware attacks, as a Reverse Engineer. You will be responsible for reverse engineering malware, analyzing security events, developing tools and scripts, and collaborating with engineering and customer success teams. This role requires strong experience in malware analysis, deep understanding of Windows internals, and proficiency in programming languages like Python, C, and C++.

Requirements

  • Strong experience in reverse engineering malware using tools such as IDA Pro, Ghidra, x64dbg, WinDbg, or similar
  • Deep understanding of Windows internals, PE file format, and ransomware attack chains
  • Prior experience at an anti-virus (AV) or endpoint security company, or certification in reverse engineering (e.g., GREM, CREA, CRT, OSCE)
  • Proficient in one or more development/scripting languages: Python, C, C++
  • Experience developing Yara rules and malware detection signatures
  • Excellent communication skills and ability to clearly convey complex technical findings
  • A passion for staying ahead of adversaries in an ever-evolving threat landscape

Responsibilities

  • Reverse engineer malware and suspicious binaries using both static and dynamic techniques to extract indicators of compromise (IOCs), identify evasion techniques, and map behavior to the ransomware attack chain
  • Monitor and triage security events, identifying malicious activity through data correlation, pattern analysis, and contextual threat enrichment
  • Develop and maintain internal tools and scripts to support threat hunting, triage, and automated analysis workflows (Python, C, C++, shell scripting)
  • Analyze and assess PE file structures, obfuscation methods, and payload delivery mechanisms to detect new or evolving threats
  • Collaborate with engineering teams to translate research into detections and product enhancements, and work closely with Customer Success during incident response
  • Contribute to threat intelligence efforts and share actionable findings internally to improve detection and prevention strategies

Preferred Qualifications

  • Experience with kernel-level analysis or rootkit detection
  • Prior research publications or community contributions in malware analysis
  • Experience automating malware analysis pipelines or integrating sandbox results into detection infrastructure

Remote

Cybersecurity

Mid-level

Share this job:

Disclaimer: Please check that the job is real before you apply. Applying might take you to another website that we don't own. Please be aware that any actions taken during the application process are solely your responsibility, and we bear no responsibility for any outcomes.

Similar Remote Jobs