Malware Analyst I, II, and III

Position Title: Malware Analyst I, II, and III

Location: NASA HQ – Washington, DC


Employs engineering techniques and processes to analyze software to identify vulnerabilities

Re-creates programs to rebuild something similar to it, exploits its weaknesses, or strengthens its defenses

Develops design specifications by inspection and analysis to offset various malware and to protect and defend USCYBERCOM infrastructure

Develops, researches, and maintains proficiency in tools, techniques, countermeasures, and trends in computer and network vulnerabilities, data hiding, and encryption

Conducts vulnerability assessments/penetration tests of information systems

Ensures software standards are met; designs, develops, documents, tests, and debugs applications software and systems that contain logical and mathematical solutions

Performs in-depth detailed research of software and methodologies to build defensive and offensive technical capabilities for USCYBERCOM.

Analyzes malware, spam, phishing, or any other malicious content, and components and end-to-end systems for security at the embedded-system, mobile, host, network, and enterprise level

Performs system analysis, reverse engineering, and static, dynamic, and best-practice malware analytical methodologies on Windows, Android, or UNIX-based platforms


BS/ BA or Equivalent



Malware Analyst I: 2 Years

Malware Analyst II: 5 Years

Malware Analyst III: 10 Years


Technical Requirements:

Malware Analyst I & II: DoD 8140/DoD 8570 Information Assurance Management (IAM) Level I Certification

Malware Analyst III: DoD 8140/DoD 8570 IASAE Level II or Computer Network Defense (CND) Certification, DOD 8140/8570 CNDSP Analyst/Infrastructure Support/Incident Responder certified.