Web Security Malware Analyst (Hybrid – Lisbon)
Indexed description
Key Responsibilities
Perform analysis of web browser extensions using static and dynamic methods to identify malicious behavior and security issues.
Reverse engineer and debug JavaScript to understand complex or obfuscated code.
Detect, document, and report security vulnerabilities, including root cause analysis and remediation recommendations.
Assist in the investigation and takedown of malicious browser extensions.
Carry out regular code reviews and provide feedback aligned with secure coding standards.
Review and inspect JavaScript code to identify suspicious or malicious activity, performing reverse engineering when required.
Design and implement detection rules and security patterns to identify violations at scale.
Monitor emerging threat trends and share findings to strengthen detection capabilities across the team.
Propose improvements, contribute innovative ideas, and support the automation of existing processes.
Serve as a technical reference point, offering guidance, clarification, and technical support to team members.
Work closely with cross-functional teams while maintaining clear and accurate technical documentation.
Support the continuous enhancement of security workflows and tooling.
You Are Someone Who Brings
Strong hands‑on experience with JavaScript, including advanced concepts such as closures, prototypes, variable scope, hoisting, callbacks, and OOP principles.
Required Hands‑on Experience With HTML And CSS.
Required knowledge of JSON, AJAX, and ES6/ES7 standards.
Good understanding of Node.js and Webpack.
Experience working with front‑end frameworks or libraries such as React, Angular, or jQuery.
Strong code analysis, debugging, and reverse engineering skills, particularly in JavaScript applications.
Ability to analyze JavaScript code and identify malicious activities effectively.
Good communication skills and the ability to work as a collaborative team player.
Added Advantages (Nice To Have)
Cybersecurity experience or strong security knowledge.
Familiarity with DAST and SAST methodologies.
Knowledge of cybersecurity open‑source tools such as Burp Suite, Nmap, or similar tools.
Understanding of obfuscation and de‑obfuscation techniques.
Experience writing technical and security assessment reports.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search