Principal Reverse Engineer (Malware, Unit 42)

We have the vision of a world where each day is safer and more secure than the one before. These arent easy goals to accomplish but were not here for easy. Were here for better. We are a company built on the foundation of challenging and disrupting the way things are done and were looking for innovators who are as committed to shaping the future of cybersecurity as we are.

Disruption is at the core of our technology and on our way of work to meet the needs of our employees now and in the future through FLEXWORK our approach to how we work. Were changing the nature of work from benefits to learning location to leadership weve rethought and recreated every aspect of the employee experience at Palo Alto Networks. And because it FLEXes around each individual employee based on their individual choices employees are empowered to push boundaries and help us all evolve together.

Role Overview

• The Unit 42 Malware team is a global team responsible for providing accurate malware analysis threat hunting capabilities and the development of malware automation pipelines. This role is designed for an experienced Reverse Engineer with familiarity specifically supporting consulting operations and threat intelligence. The role has flexible hours but will have an on-call component that includes a commitment to shared coverage of high-priority tickets that may arrive between Friday through Sunday.

Required Skills

• Advanced knowledge with at least one disassembler (e.g. IDA Pro Ghidra Binary Ninja).

• Expertise with user-mode and kernel-mode debuggers (e.g. x64dbg WinDbg gdb).

• Developing and scaling reverse engineering automations (e.g. IDAPython Ghidra Python Docker).

• Deep understanding of modern malware techniques including obfuscation and evasion tactics.

• Understanding of x86/x64 architecture and IL formats (e.g. .NET).

• Proficiency in at least one programming language (e.g. Python C C).

• Knowledge of networking protocols (e.g. HTTP DNS TCP/IP) and analyzing traffic.

• Experience configuring sandboxes to increase hit-rate and accelerate analysis.

• Familiarity with prompt engineering and using LLMs to accelerate analysis.

• Advanced understanding of modern Windows internals relevant to malware analysis.

• Experience transforming/modifying malware to support analysis (e.g. deobfuscation).

• Familiarity with script deobfuscation and analysis (e.g. PowerShell JavaScript)

Qualifications :

Preferred Skills

• Proven track record of contributing to threat research initiatives

• Designing and building next-generation hunt tooling

What we Offer

• Hands-on experience with real-world malware and threats.

• Access to industry-leading tools and infrastructure.

• Opportunity to work on impactful projects that contribute to threat intelligence.

• A collaborative and supportive team environment.

Additional Information :

Our Commitment

Were problem solvers that take risks and challenge cybersecuritys status quo. Its simple: we cant accomplish our mission without diverse teams innovating together.

We are committed to providing reasonable accommodations for all qualified individuals with a disability. If you require assistance or accommodation due to a disability or special need please contact us at  .

Palo Alto Networks is an equal opportunity employer. We celebrate diversity in our workplace and all qualified applicants will receive consideration for employment without regard to age ancestry color family or medical care leave gender identity or expression genetic information marital status medical condition national origin physical or mental disability political affiliation protected veteran status race religion sex (including pregnancy) sexual orientation or other legally protected characteristics.

All your information will be kept confidential according to EEO guidelines.

Remote Work :

No

Employment Type :

Full-time