Digital Forensic Expert & Incident Response

Description

Today’s world is crime-riddled. Criminals are everywhere, invisible, virtual, and sophisticated. Traditional ways to prevent and investigate crime and terror are no longer enough…

Technology is changing incredibly fast. The criminals know it, and they are taking advantage. We know it too.

For 30 years, the incredible minds at Cognyte around the world have worked closely together and put their expertise to work, to keep up with constantly evolving technological and criminal trends, and help make the world a safer place with leading investigative analytics software solutions.

We are defined by our dedication to doing good and this translates to business success, meaningful work friendships, a can-do attitude, and deep curiosity.

We are seeking a highly skilled Digital Forensic Expert & Incident Responder (DFIR) to lead our organization's cyber security events at both the operational and technical levels. The ideal candidate will possess strong technical expertise in ICT domains, including networking, systems, and cybersecurity. The individual will be responsible for managing, analyzing, and responding to cyber incidents, performing digital forensics, triage, evidence collection, live and post-mortem investigations, and ensuring that cybersecurity threats are handled and mitigated.

As a Digital Forensic Expert & Incident Responder, you will:

• ead the investigation and remediation of security incidents, from detection to resolution.
• Perform detailed forensic investigations on compromised systems, networks, and applications.
• Utilize threat intelligence feeds and other sources to stay up-to-date with evolving cyber threats and adversary tactics, techniques, and procedures (TTPs).
• Develop, maintain, and continuously improve incident response playbooks to ensure the organization’s preparedness for different types of security incidents.
• Conduct tabletop exercises and simulations to test and refine response processes and ensure readiness for real-world cyber threats.
• Communicate incident status, progress, and impact to executive leadership, risk, and legal teams.
• Work with internal teams and third-party vendors to ensure that all necessary security tools and resources are available and properly configured.

Requirements

For that you’ll need:

• 5+ years of experience in cybersecurity, digital forensics, or incident response.
• Extensive experience in handling and investigating security incidents, performing root cause analysis, and developing remediation strategies.
• Strong understanding of core ICT domains, including networking, systems, and cybersecurity fundamentals.
• Good understanding of Linux OS's with hands-n experience.
• Experience writing automation code (Python / JS)
• In-depth knowledge and experience with incident response (IR) and digital forensic tools
• Excellent communication skills, both written and verbal, with the ability to explain complex technical details to non-technical stakeholders.