ZipRecruiter

Log In

1

Malware Research Jobs (NOW HIRING)

Xcede

Security Researcher

San Jose, CA

You will reverse engineer live IoT botnet malware, translate findings into detection primitives and wire-accurate attack traffic, and work across the organization to ensure that research reaches the ...

Netcraft

Head of Threat Research

New York, NY · On-site +1

Research phishing, malware, malicious JavaScript, and cybercrime campaigns using Netcraft's threat intelligence platforms * Produce threat assessments ranging from short reactive write-ups on active ...

Maximus

Senior Cybersecurity Research Scientist

San Antonio, TX · On-site

$88K - $113K/yr

... malware analysis, vulnerability and reverse engineering research - Perform threat modeling and assess mitigation strategies - Produce technical reports, research artifacts, and briefings to support ...

next page

Showing results 1-20

People also search for

All JobsMalware Research Jobs

Malware Research information

See salary details

$11

$44

$75

How much do malware research jobs pay per hour?

As of Jun 11, 2026, the average hourly pay for malware research in the United States is $44.83, according to ZipRecruiter salary data. Most workers in this role earn between $27.88 and $58.89 per hour, depending on experience, location, and employer.

How to become a malware researcher?

Malware researchers analyze malicious software to understand its behavior and develop defenses. They typically hold degrees in computer science, cybersecurity, or related fields, and gain skills in reverse engineering, programming, and using tools like disassemblers and debuggers. Certifications such as GREM or GREM can also enhance credibility and job prospects.

Can you make $500,000 a year in cyber security?

Malware research roles in cybersecurity can offer high salaries, especially for experienced professionals with specialized skills, certifications, and a strong track record. Achieving a $500,000 annual income typically requires advanced expertise, leadership positions, or working in high-demand sectors, often supplemented by bonuses or stock options.

What is the difference between Malware Research vs Malware Analysis?

AspectMalware ResearchMalware Analysis
CredentialsCybersecurity certifications, programming skillsCybersecurity certifications, reverse engineering skills
Work EnvironmentResearch labs, cybersecurity firms, academiaSecurity operations centers, incident response teams
Industry UsageDeveloping detection methods, understanding malware evolutionIdentifying, dissecting, and mitigating malware threats
Search/Comparison IntentUnderstanding malware development and behaviorAnalyzing specific malware samples for threats

Malware Research focuses on studying malware to understand its development, behavior, and evolution, often in research labs or academic settings. Malware Analysis involves dissecting specific malware samples to identify threats and mitigate risks, typically within security operations or incident response teams. Both roles require cybersecurity expertise but differ in their primary objectives and work environments.

What are the key skills and qualifications needed to thrive as a Malware Researcher, and why are they important?

To thrive as a Malware Researcher, you need strong expertise in cybersecurity, reverse engineering, programming (such as C/C++ or Python), and a solid understanding of operating systems and malware behaviors, often supported by a degree in computer science or a related field. Familiarity with tools like IDA Pro, Ghidra, Wireshark, and sandbox environments, as well as certifications like CEH or OSCP, is highly valuable. Analytical thinking, attention to detail, and effective communication are critical soft skills for interpreting complex threats and collaborating with security teams. These skills are essential for identifying, analyzing, and mitigating malicious software to protect organizational assets and maintain cybersecurity.

What is malware research?

Malware research is the process of studying malicious software (malware) to understand how it operates, spreads, and affects computer systems. Researchers analyze malware samples using various techniques to identify their behavior, origins, and vulnerabilities. This information helps in developing effective detection, prevention, and removal strategies to protect individuals and organizations from cyber threats. Malware research also contributes to improving cybersecurity tools and informing law enforcement about emerging threats.

How much do malware researchers make?

Malware researchers typically earn between $70,000 and $120,000 annually, depending on experience, education, and location. Senior professionals with specialized skills in reverse engineering and threat analysis can earn higher salaries, especially in cybersecurity-focused environments.

What are some common challenges faced by professionals working in malware research?

Malware researchers often encounter the challenge of keeping pace with rapidly evolving threats and sophisticated attack techniques. The role requires continuous learning and adaptability, as new malware variants and evasion methods emerge frequently. Additionally, researchers must ensure their analysis environments are secure to prevent accidental infections or data breaches. Collaboration with other cybersecurity teams, such as incident response and threat intelligence, is also essential to sharing insights and developing effective countermeasures.

What does a malware researcher do?

A malware researcher analyzes malicious software to understand how it works, identify its origin, and develop methods to detect and remove it. They use tools like disassemblers, debuggers, and antivirus software, often working in cybersecurity environments and requiring knowledge of programming and operating systems.
More about Malware Research jobs
What cities are hiring for Malware Research jobs? Cities with the most Malware Research job openings:
What states have the most Malware Research jobs? States with the most job openings for Malware Research jobs include:
What job categories do people searching Malware Research jobs look for? The top searched job categories for Malware Research jobs are:
Malware Research jobs near you
Infographic showing various Malware Research job openings in the United States as of June 2026, with employment types broken down into 67% Full Time, and 33% Contract. Highlights an 100% In-person job distribution, with an average salary of $93,238 per year, or $44.8 per hour.

Lead Cyber Threat Analyst with Security Clearance

Evolver Federal

Washington, DC

Other

Medical, Dental, Vision, Retirement, PTO

Posted 11 days ago

Job description

Lead Cyber Threat Analyst to fulfil a requirement for a potential government client. The Lead Cyber Threat Analyst is responsible for identifying, analyzing, and mitigating advanced cyber threats targeting federal systems and critical infrastructure. This role focuses on proactive threat hunting, intelligence analysis, and developing strategies to detect and disrupt adversary tactics, techniques, and procedures (TTPs).

The Lead Cyber Threat Analyst will lead a team of analysts, collaborate with SOC and incident response teams, and provide actionable intelligence to strengthen the organization's cybersecurity posture. This position requires deep expertise in threat analysis, malware research, and adversary emulation within highly regulated environments. Responsibilities: * Lead cyber threat analysis and intelligence operations to identify emerging threats and vulnerabilities.

Conduct proactive threat hunting across enterprise and cloud environments using advanced analytics. Analyze adversary TTPs and develop detection strategies aligned with MITRE ATT&CK framework. * Oversee malware analysis, reverse engineering, and forensic investigations for complex incidents.

Integrate threat intelligence feeds into SOC workflows and detection platforms. Leverage AI-driven threat detection techniques to enhance predictive and adaptive security capabilities. * Apply Zero Trust principles across detection, response, and access control strategies to strengthen enterprise resilience.

Implement cloud-native security solutions to safeguard workloads and data in multi-cloud environments. Prepare and deliver executive-level threat reports, risk assessments, and strategic recommendations. * Collaborate with SOC, incident response, and engineering teams to enhance detection and response capabilities.

Maintain and update threat intelligence platforms and knowledge bases. Support development of playbooks for threat hunting and incident response automation. * Ensure compliance with federal cybersecurity frameworks (NIST 800-series, RMF, TIC 3.0).

Mentor and coach junior analysts to develop technical expertise and career growth. Manage cross-functional SOC projects, ensuring alignment between threat analysis, incident response, and engineering teams. * Drive process improvements and best practices across SOC operations to enhance efficiency and resilience.

Basic Qualifications: Bachelor's Degree in Computer Science, Information Management (IM), Information Technology, Engineering, or equivalent with 6 years of technical experience and 4 years' experience in IT Solutions at senior management Certified Information Systems Security Professional (CISSP) Certified Security Analyst, Certified Ethical Hacker, or similar certifications Project Management Institute (PMI) Project Management Professional (PMP) (Highly Recommended) Information Technology Infrastructure Library (ITIL) 4 Foundation 10 years of successful enterprise experience in an IT or technology-related field, with the last 5 years, on large government technical BPAs/contracts US Citizen with the ability to pass a comprehensive government background check Preferred Qualifications: Experience managing or supporting cybersecurity operations, including SOC functions, in a federal or highly regulated environment Experience leading cybersecurity programs within federal civilian agencies Master's degree in a technical or management-related field GIAC (GCTI, GCFA) or AWS/Azure security certifications Knowledge of RMF, NIST 800-series, OMB A-130, and TIC 3.0 policies Experience with performance-based contracts and cross-functional team leadership Strong communication skills, including experience delivering executive briefings and incident communications Expertise in threat intelligence platforms (TIPs) and SIEM tools (Splunk, Elastic). Familiarity with SOAR platforms and automation for threat detection and response. * Experience with malware reverse engineering and memory forensics.

Strong knowledge of MITRE ATT&CK, Cyber Kill Chain, and threat modeling methodologies. Hands-on experience with cloud threat analysis (AWS, Azure, GCP) and container security. * Ability to lead advanced threat hunting campaigns and mentor junior analysts.

Understanding of nation-state threat actors and advanced persistent threats (APTs). Experience integrating threat intelligence into vulnerability management and risk scoring. * Knowledge of scripting languages (Python, PowerShell) for automation and custom detection.

Evolver Federal is an equal opportunity employer and welcomes all job seekers. It is the policy of Evolver Federal not to discriminate based on race, color, ancestry, religion, gender, age, national origin, gender identity or expression, sexual orientation, genetic factors, pregnancy, physical or mental disability, military/veteran status, or any other factor protected by law. Actual salary will depend on factors such as skills, qualifications, experience, market and work location.

Evolver Federal offers competitive benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies.

Apply