What makes the role special

Founded in 2003 and headquartered in Singapore, Group-IB is a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime. Combating cybercrime is in the company’s DNA, shaping its technological capabilities to defend businesses, citizens, and support law enforcement operations.


Group-IB’s Digital Crime Resistance Centers (DCRCs) are located in the Middle East, Europe, Central Asia, and Asia-Pacific to help critically analyze and promptly mitigate regional and country-specific threats. These mission-critical units help Group-IB strengthen its contribution to global cybercrime prevention and continually expand its threat-hunting capabilities.

Each of us can help make the world a safer place.

Join us!


WHAT MAKES THE ROLE SPECIAL?

Group-IB is a partner of INTERPOL, Europol, and a cybersecurity solutions provider, recommended by SWIFT and OSCE. Such partnerships give us advantages in our everyday duties.

We make a deep research of malware and public presentation of complex research. We participate in IR and perform as experts at conferences and in mass media.

Our reports are used by thousands of people all over the world.


TASKS TO SOLVE

  • Research malicious files, conduct reverse engineering, and develop methods and approaches for detecting malicious files based on their behavior
  • Emulate attacker actions in a virtual environment to test and improve detection capabilities
  • Implement detection logic within an existing framework (using Python, Rust, Yara, Sigma, Suricata)
  • Independently identify problematic cases, evasion techniques for dynamic analysis systems, and solutions to these issues.
  • Analyze detection logic for false positives and minimize such occurrences
  • Conduct analysis of similar solutions to compare system behavior in different scenarios
  • Test detection logic rules for functionality and performance


THIS ROLE IS PERFECT FOR YOU IF YOU:

  • Have experience with IDA Pro, ring-3 debuggers, sandboxes, and other static and dynamic analysis tools
  • x86 and x64 assembly knowledge
  • Understand Windows architecture, WinAPI, and the PE file format
  • Have a good understanding of PDF and MS-CFB formats
  • Can analyze obfuscated code written in scripting languages
  • Know how to set up a virtual machine for malware analysis
  • Have experience in Python
  • Have a keen interest in diverse tasks and the ability to quickly learn new things
  • Possess persistence and the ability to see complex tasks through to completion


WHAT ELSE WE APPRECIATE IN OUR TEAM

  • Experience in exploit analysis (Flash, PDF, DOCX, etc.)
  • Experience in network traffic analysis
  • Penetration testing experience
  • Knowledge of Rust


OUR WORK ENVIRONMENT & CULTURE:

At Group-IB, we believe that employee happiness is fundamental to success. We foster a supportive, inclusive, and dynamic workplace where every team member is empowered to grow. Whether you’re aiming to deepen your expertise, step into leadership, explore new departments, or take your career abroad, we provide diverse opportunities for professional development.

Our team is made up of specialists from around the world who bring deep international expertise and thrive on solving complex challenges. You’ll be working with cutting-edge technologies recognized globally by Gartner, IDC, and Forrester, and contributing to projects that span across 60 countries alongside 450+ partners and 500+ clients.

We take pride in our multicultural, values-driven culture—where mutual respect, collaboration, and shared goals unite us across borders. And with Group-IB’s continued global growth and financial stability, your career trajectory here can accelerate faster than in most traditional environments.



WHAT DO WE OFFER:

  • Flexible Work Schedule
  • We don’t believe in fixed hours—what matters is impact, not time spent. You have the freedom to design your own workday in a way that drives results and balance.
  • Comprehensive Health Coverage
  • Your well-being comes first. We offer health insurance to support you when it matters most.
  • Certifications & Continuous Learning
  • Our team holds over 1,000 globally recognized certifications, including CEH, CISSP, OSCP, and more. Through our incentive program, we cover the cost of professional development—because your growth fuels our innovation.
  • Meaningful Challenges & Growth Paths
  • From soft skills development to advanced technical training, a wide range of internal programs help you expand your skill set—and earn recognition and rewards along the way.
  • Entrepreneurial spirit is encouraged
  • We value initiative. Whether it’s launching a tech blog, organizing events, building communities, or starting a sports team—Group-IB is a place where bold ideas are supported and celebrated.


Apply on Hibob