Job description

The job involves being part of a Cyber Incident Response team, focusing on threat detection and response for major clients, as well as conducting investigations and analyses to enhance cybersecurity measures. It requires skills in incident response, network communication protocols, scripting languages, and various security analyses.

Responsibility

• Conduct root cause and intrusion investigations.
• Perform proactive threat hunts.
• Prepare, respond, and recover from external and internal threat actors.
• Conduct analysis of electronic media, packet capture, log data, and network devices.
• Set and manage expectations with senior stakeholders and team members.
• Present concise, relevant information to a non-technical audience.
• Uphold the firm's code of ethics and business conduct.

Qualifications

• Bachelor’s or master’s degree in Computer Science/Communications or related field.
• GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), EnCE or equivalent certifications.
• Experience developing and managing incident response programs.
• Expertise in analysis of TCP/IP network communication protocols.
• Experience with a scripting language such as Perl, Python, or other scripting language in an incident handling environment.