Senior Malware Researcher

Summary

Join Halcyon, a leading anti-ransomware solution provider, as a Senior Malware Researcher. Lead complex ransomware research on Windows and Linux systems, mentor other researchers, and develop advanced tools and decryptors. Set research priorities, identify emerging threats, and collaborate with other teams to enhance detection and recovery strategies. Your work will directly impact product capabilities and customer protection. Halcyon is a remote-native, completely distributed global team offering a flexible work environment. This role involves in-depth malware analysis, report creation, decryptor design, tool development, mentorship, and community engagement.

Requirements

• Extensive experience in analyzing both Windows and Linux malware, with deep expertise in ransomware behaviors, encryption algorithms, and evasion techniques
• Advanced proficiency in reverse engineering tools such as IDA Pro, Ghidra, Binary Ninja, x64dbg, WinDbg, and GDB
• Expertise in writing and optimizing YARA rules to detect and classify malware effectively
• Strong programming skills in languages such as Python, C, or C++, with experience building analysis tools and automation frameworks
• Familiarity with threat intelligence platforms (VirusTotal, MalwareBazaar, Any.Run, etc.) and ability to correlate malware findings with broader threat landscapes
• Proven ability to collaborate across teams and translate technical research into actionable detection and product improvements
• Excellent technical writing skills to document analysis findings clearly and concisely

Responsibilities

• Lead in-depth analysis of Windows and Linux malware samples, with a particular focus on ransomware. This includes static and dynamic analysis to understand the behavior, mechanisms, and objectives of the malware
• Set research direction by identifying ransomware trends, prioritizing analysis targets, and proposing enhancements to detection and recovery capabilities
• Create comprehensive reports detailing ransomware analysis findings, including encryption methods, identification of encryption flaws, ransom note patterns, indicators of compromise (IOCs), and recommended decryption or mitigation strategies
• Design, develop, and validate advanced decryptors, including those requiring novel cryptographic analysis or exploitation of implementation flaws
• Design and develop tools to automate malware analysis tasks, streamline workflows, and enhance overall efficiency in malware research activities
• Mentor and review the work of other researchers, providing technical guidance and ensuring the quality and accuracy of deliverables
• Provide expert support to other teams within the organization, answering malware-related queries
• Represent Halcyon in the security community through technical blogs, conference presentations, and research publications

Preferred Qualifications

• Experience in Rust programming
• Experience in applying machine learning techniques and feature engineering to malware classification and detection
• Experience in writing technical blog posts and delivering presentations at conferences on topics related to malware research

Benefits

• Comprehensive healthcare (medical, dental, and vision) with premiums paid in full for employees and dependents
• 401k plan with a generous employer contribution
• Short and long-term disability coverage, basic life and AD&D insurance plans
• Medical and dependent care FSA options
• Flexible PTO policy
• Parental leave
• Generous equity offering