Incident Response Consultant (English)
United Kingdom; Ireland
Minimum qualifications:
- Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or in a related technical field, or equivalent practical experience.
- 2 years of experience working end to end incident response investigations, analysis, or containment actions.
- 2 years of investigative experience with network forensics, malware triage analysis, cloud forensics, or disk and memory forensics.
- Ability to communicate in English fluently to work with internal partners and customer teams.
Preferred qualifications:
- Certifications in Cloud platforms.
- Experience in security competitions, Capture the Flags (CTFs) or testing platforms such as Hack the Box, TryHackMe, Overthewire, etc.
- Ability to communicate investigative findings and strategies to technical staff, executive leadership, legal counsel, and internal and external clients.
- Excellent time and project management skills.
About the job
As an Incident Response Consultant, you will provide industry-leading incident response, assessment, transformation, managed detection and response, and training services with in-depth tactical support. You will help organizations effectively detect and respond to threats and reduce the overall impact of business risk before, during, and after an incident. You will be able to resolve security incidents quickly, effectively and at scale with complete incident response including investigation, containment, remediation, and crisis management. In this role, you will work on engagements including assisting clients in navigating technically complex and high-profile incidents, performing forensic analysis, threat hunting, and malware triage.
Responsibilities
- Recognize and code attacker Tools, Tactics, and Procedures (TTPs) and Indicators of Compromise (IOCs) that can be applied to current and future investigations.
- Conduct host forensics, network forensics, log analysis, and malware triage in support of incident response investigations.
- Automate tracking and discovery of threats leveraging internal and external data sources. Investigate impact to customers to determine if new detection or compromise notifications are necessary.
- Develop and present comprehensive and accurate reports, training, and presentations for technical and executive audiences.
- Utilize Mandiant technology to conduct investigations and examine endpoint and network-based sources of evidence.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Cloud Computer Science Cyber defense Forensics GCP Incident response Log analysis Malware Threat intelligence TTPs
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.