Cyber Reverse Engineer

CACI International•Sterling, VA

About The Position

Come be part of a unique team solving wide-ranging national security cyber and hardware challenges. Use your skills in interesting projects involving software reverse engineering, vulnerability analysis, and exploit development. Responsibilities include performing static and dynamic analysis of software and firmware, in-depth vulnerability analysis to identify weaknesses and access vectors, and development of custom code for exploitation. In this role you will also have the opportunity to be forward-facing with the customer in training and operational settings. An ideal candidate can balance multiple projects in a fast-paced, interdisciplinary, R&D environment and can work effectively individually and on a team through their excellent communication skills and technical acumen. Be part of a CACI department with an expanding range of programs focusing on Cyber Operations, where you get to grow on and between programs with peers who are dedicated to advancing national security. Participate in interesting team events where you get to engage with your co-workers and expand your career network. We have an engaging environment with a management team focused on growing your career and making you a part of our future. We offer bonus compensation plans that demonstrate our appreciation for your dedication to the program and being a part of our team. You'll get paid for cyber events and training, such as our Capture the Flag Events, Internal Research and Development opportunities, as well as prepaid courses to nationally recognized certification courses to grow your career.

Requirements

Active TS/SCI clearance
Bachelor of Science degree in Computer Science, Software Engineering, Computer Engineering, or Electrical Engineering.
2 years of relevant work experience
Experience in computer science and information systems
Experience analyzing and reverse engineering Assembly binaries (x86 and/or ARM, AVR)
Experience with scripting languages such as Python and Unix Shell scripts
Experience using virtualization technologies (VMware, VirtualBox, Docker)
Experience using binary analysis tools such as IDA Pro, Ghidra, WinDbg, binwalk, FTK

Nice To Haves

Understanding of memory management concepts (Heap, Stack, Virtual Memory)
Understanding of compiler specifics, operating system concepts, security models, and the causes of most vulnerabilities and how to exploit them
Familiarity with low-level Windows internals and UNIX kernel internals
Familiarity with encryption & hashing methods and algorithms (3DES, AES, RSA, MD5, SHA, CRC, etc.)
Background in ethical hacking and/or testing software vulnerabilities with a working knowledge of hacking tools and techniques such as memory corruption exploits, buffer overflows, rootkits, protocol poisoning, MetaSploit, nmap, etc.
Cybersecurity certifications (e.g. CISSP, CEH, Security+)

Responsibilities

Analyze and reverse engineer software binaries and embedded firmware on traditional and embedded systems to identify functional behavior.
Conduct code review and vulnerability analysis on software/firmware to identify potential weaknesses or access vectors.
Perform protocol analysis of communication channels.
Perform static and dynamic analysis of software and firmware using tools like IDA Pro, Ghidra, X64Dbg, GDB, and Sysinternals to research the behavior of binaries.
Perform differential analysis to identify critical changes between binaries.
Draft and deliver technical reports related to the scope, nature, and characteristics of the assessed software/firmware to both technical and non-technical audiences.
Brief the customer and accurately capture in writing the findings of your analysis.