DFIR Director | VIC/NSW

Role Overview

The Director of DFIR (Digital Forensics and Incident Response) is responsible for overseeing the DFIR team and ensuring that the team is prepared to respond to security incidents while preserving evidence. This role combines the practices of digital forensics and incident response to assist our customers in the successful containment and eradication of a major security threat. The Director of DFIR is responsible for ensuring that the DFIR team is properly trained and equipped to handle security incidents, and for developing and implementing policies and procedures to guide the team's actions. The Director of DFIR may also be responsible for liaising with customers, third party providers, law enforcement, legal and insurance firms.

About You

As a senior member of the Professional Services team, you will be comfortable taking a leading role in engagements and operating with a minimal amount of direct supervision. You should be confident performing time-sensitive analysis in stressful situations, recording the details of your analysis for client reports, and be able to work with only broad direction for a given task. Most importantly, you are a keen learner - acknowledging that attacks and defence are constantly evolving, requiring ongoing attention to the latest developments.

Accountabilities

• Mentor team members to achieving goals and developing the necessary security advisory skills by offering feedback and demonstrating the desired skills and expected work ethic.
• Demonstrate sound understanding of the Tesserent Cyber 360 strategy and its alignment to client needs to drive opportunities and deliver multi service engagements
• Establish and maintain a trusted advisor relationship with Client’s by using your in-depth consulting experienced and strategic account management expertise
• Ensure performance objectives are defined for each consultant within the team, including establishing KPIs, personal development plans and training needs.
• Work across a diverse team to understand their individual strengths, weaknesses, motivations, and conflict. Managing performance and conflicts within the team.
• Developing thought leadership for the DFIR practice and representing Tesserent at industry events and forums.
• Participate in the recruitment processes to identify and select suitable candidates for potential security advisory consultant roles in the team.
• Provide quality reports for the client suitable for both executive and technical audiences describing findings, outlining risk levels, compliance maturity and recommendations for remediation and ensure all agreed deliverables are of high standard
• Maintain knowledge of the wider capabilities and services offering across the Tesserent Group to provide a multi-service engagement
• Contribute to the development and sharing of knowledge across the Tesserent Group
• Work alongside the sales team in identifying and where required, developing new opportunities with existing and new customers.
• Take accountability for the team’s utilisation target, cost models (hiring and salary reviews) and financial goals in conjunction with the Professional Services and Sales Leaders.

Technical Skills

• Ability to perform breach investigations and incident response within client networks
• Deliver proactive compromise assessment / threat hunting engagements for clients
• Conducting endpoint, network and log investigations to identify malicious activity
• Authoring written investigation reports and communicating findings to customers
• Ability to develop and deliver training and/or speaking material for public and/or private events
• Maintain knowledge of industry insights and proactively research emerging security risks, controls, applicable regulations, and trends.
• Ability to develop, use and improve the company’s methodologies to provide effective security and risk advice.
• Ability to articulate business outcomes including the implications and accurately calculate risks of findings in relation to the business goals of our clients.