Summary: The Malware Analyst leads efforts in detecting, analyzing, and mitigating malware threats to safeguard systems and data, providing critical insights and enhancing detection capabilities. Highlights: 1. Lead efforts in detecting, analyzing, and mitigating malware threats. 2. Conduct advanced static and dynamic malware analysis for critical insights. 3. Develop tools and signatures to enhance threat detection capabilities. ### **Description** **Malware Analyst** **London, Cheltenham or Manchester** Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group. We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of talented individuals working together towards a safer future. We aim to create an environment where everyone can reach their full potential. We work together, we are brilliantly creative, we embrace difference and we want you to join in our mission, to make the world safer and more secure. Take a look at our website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business… https://www.nccgroup.com/uk/ **The Opportunity:** As a Malware Analyst you will lead efforts in detecting, analyzing, and mitigating malware threats to safeguard organisational systems and data. By conducting advanced static and dynamic malware analysis, the role provides critical insights into emerging threats, supports incident response activities, and enhances detection capabilities through tool and signature development. Together with colleagues spanning almost all time zones, you will help to make our clients safer and more secure against cyber threats by helping them understand the motivations of relevant actors, identifying their targets and how they operate. The Global Threat Intelligence Team has built a very strong reputation when it comes to collecting our own data and combining this with open and commercial sources. This role involves analysis of cyber threats, the development of actionable intelligence, and collaboration with various teams. Your support to the wider organisation will be critical in the development of NCC Group’s Threat Intelligence capabilities and the broader service we offer.### **Key Responsibilities** **Malware Analysis and Response:*** Conduct in\-depth static and dynamic analysis of new and emerging malware threats, identifying potential risks and novel attack vectors. * Provide detailed analysis of malware samples as part of Digital Forensics and Incident Response (DFIR) investigations. * Respond to Requests for Information (RFIs) related to malware and binary analysis from internal and external teams. * Stay up\-to\-date with ongoing malware campaigns and techniques, providing insight into emerging or high\-impact threats. **Documentation and Reporting:*** Document and report on the behaviour, techniques, tactics, and procedures (TTPs) used by malware * Generate and share IoCs from malware analyses, leveraging the internal TIP tooling. * Contribute to external communications through blog posts that highlight unique or significant malware findings. **Tool and Signature Development:*** Develop and maintain tools and scripts for malware analysis, including custom configuration extractors and unpackers in the malware lab. * Based on malware analysis, create and refine detection signatures such as YARA rules. Identify Network and host\-based detection opportunities. **Collaboration and Information Sharing:*** Support the other pillars within the GTI team with research and analysis. * Work closely with DFIR teams to provide context and insights on malware threats. * Collaborate with the internal detection engineering team to ensure detections are in place for the latest threats. * Collaborate with external partners, information\-sharing communities, and industry forums to stay updated on new malware threats and to share intelligence. ### **Skills, Knowledge \& Expertise** * Proven experience as a Malware Analyst, Threat Intelligence Analyst, or similar role with a focus on malware research and response. * Strong knowledge of reverse engineering tools and techniques for malware analysis, including tools like IDA Pro, Ghidra, OllyDbg, or similar. * Familiarity with programming languages such as Python, C\+\+, or assembly for developing analysis tools and scripts. * Expertise in creating and maintaining YARA rules. * Strong understanding of networking protocols, including TCP/IP, DNS, and how malware utilises these protocols. ### **Job Benefits** * **Flexible Working**: Balance your work and personal life with our flexible working options. * **Generous Holiday Allowance**: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. * **Medicash \& Critical Illness Scheme** * **Financial \& Investment Benefits**: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. * **Community \& Volunteering Programmes**: Make a difference in your community with our volunteering opportunities. * **Green Car Scheme:** Drive green and save money with our eco\-friendly car scheme. * **Cycle Schem**e: Stay fit and healthy with our cycle\-to\-work scheme. * **Special Time Off**: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. * **Family Planning**: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments. ### **About NCC Group** We assess, develop and manage cyber threats across our increasingly connected society. We advise global technology, manufacturers, financial institutions, critical national infrastructure providers, retailers and governments on the best way to keep businesses, software and personal data safe. With our knowledge, experience and global footprint, we are best placed to help businesses identify, assess, mitigate \& respond to the risks they face. We are passionate about making the Internet safer and revolutionising the way in which organisations think about cyber security. Headquartered in Manchester, UK, with over 35 offices across the world, NCC Group employs more than 2,000 people and is a trusted advisor to 15,000 clients worldwide.