Awesome DFIR opportunity...

Location
Washington D.C. (US)
Salary
Digital Forensics & Incident Response Director
Posted
07 Sep 2020
Closes
05 Oct 2020
Ref
0080
Job Type
Permanent

FPG Cyber are currently recruiting on behalf of our prestigious client, a Global Cyber Security Consultancy, for a Digital Forensics & Incident Response Director, it is a fully remote position, travel will be required.

The ideal candidate will have extensive hands-on knowledge performing incident data breach responses as well as being fully versed in security risk assessments, reactive incidents and computer forensics (ransomware will be a bonus).                                                                                                                                       

Position Overview

The ideal candidate will have hands-on experience performing incident response tasks for data breaches as well as having expert knowledge of security risk assessments, reactive incident response, and computer forensics (ransomware is a plus).

The Role

  • Perform incident response engagements related to preemptive data breaches, provided analytic reports for litigation and regulatory responses; workplace and employment issues, including theft of trade secrets; investigations related to network breaches/unauthorized access of data through computer forensics
  • Perform data breach response, cyber risk/security assessments, and remain involved in phases such as penetration testing, vulnerability scanning, and log configuration
  • Remain highly responsive and ensure all deadlines are met
  • Engage with attackers directly to resolve cyber extortion incidents
  • Participate in CSIRP development and gap analysis, tabletop exercises, incident response and computer forensics, and data breach response with best practices
  • Experience with scan/assessment tools such as EnCase, Metasploit, Nessus, Burp Suite, Core Impact, and/or others
  • Handle web application exploitation, server and client-side attacks, and protocol subversion
  • Perform IT System and Network Audits; write technical reports

Responsibilities

  • Lead engagements related to data breach response and preemptive cyber security
  • Analytic and reporting for litigation and regulatory response
  • Workplace and employment issues including theft of trade secrets
  • Investigations related to network breaches / unauthorized data access through computer forensics and incident response
  • Deliver exceptional client services including client communication throughout the entire project lifecycle to better understand client needs
  • Remain highly responsive and ensure all deadlines are met
  • Manage staff performing data breaches, cyber risk/security assessments, and remain involved in phases such as penetration testing, vulnerability scanning, and log configuration
  • Engage with attackers directly and/or manage staff engaging with attackers to resolve cyber extortion incidents.
  • Lead Cybersecurity Incident Response Plan (CSIRP) development and gap analysis
  • Experience with scan/assessment tools such as Metasploit, Nessus, Burp Suite &Core Impact
  • Handle web application exploitation, server and client-side attacks, and protocol subversion
  • Perform IT system and network audits; write technical reports

Qualifications

  • Minimum of 7 years of experience with cyber investigations, incident response, forensics or related information security experience
  • Ability to manage multiple projects and train/mentor staff
  • Advanced working knowledge of forensic tools (EnCase, FTK, BlackLight)
  • Experience with Unix, Linux, Mac and an administrator level understanding of networking, firewalls, and various protocols involved in data sharing and communications (how protocols work, common ports, common usage)
  • Working knowledge of current data collection, storage, and chain of custody best practices
  • Experience presenting findings and recommendations to C-Level Executives, law enforcement, and outside counsel
  • Knowledge of encryption and encoding methods, communication protocols, and algorithms
  • Enthusiastic about delivering the highest quality results to clients on time and on budget
  • Able to triage multiple cases simultaneously
  • Ability to support business development efforts
  • Desire to work on diverse projects with multiple language, cultural, and technical differences
  • Ability to work in a dynamic environment and to travel to client locations 

  • Excellent problem solving and troubleshooting skills

Preferred Certifications:

  • GIAC Certified Incident Handler (GCIH)
  • GIAC Certified Intrusion Analyst (GCIA)
  • GIAC Reverse Engineering Malware (GREM)
  • GIAC Certified Forensic Analyst (GCFA)
  • GIAC Certified Forensic Examiner (GCFE)
  • Encase Certified Examiner (ENCE) 


Start date is = immediate (notice period excepted for the right candidates) please forward your resumes to: Tom Layzell at FPG Cyber tlayzell@firstpointgroup.com (972) 645 0142

Apply for Awesome DFIR opportunity...

Already uploaded your CV? Sign in to apply instantly

Apply




Upload from your computer

Or import from cloud storage

Your CV must be a .doc, .pdf, .docx, .rtf, and no bigger than 1MB


4000 characters left


When you apply for a job we will send your application to the named recruiter, who may contact you. By applying for a job listed on CyberSecurityJobsite.com you agree to our terms and conditions and privacy policy.

As part of the job finding service we provide, we will send you relevant news and information via email. These will be sent by SATOS Media and you may opt out from receiving these emails at any time by following the unsubscribe links within the messages or by contacting us via the details within the Privacy Notice.

You should never be required to provide bank account details. If you are, please email us.

Similar jobs

Similar jobs