Principal Consultant, DFIR, Reactive Services (Unit 42) - Remote Weekend Shift
Tasks
- Analyze endpoint telemetry
- Analyze logs
- Analyze memory artifacts
- Conduct cloud investigation
- Conduct host investigation
- Conduct network investigation
- Deliver findings to clients
- Determine impact of incidents
- Determine scope of compromise
- Develop DFIR playbooks
- Develop investigative methodologies
- Identify attacker activity
- Lead digital forensics investigations
- Mentor team members
- Perform forensic acquisition
- Serve as technical lead for incident response engagements
- Support incident containment
- Support incident recovery
- Support incident remediation
Perks/Benefits
Skills/Tech-stack
Digital forensics | EnCase | Endpoint telemetry | Evidence handling | FTK | Forensic acquisition | Incident Response | Linux forensics | Log Analysis | MacOS forensics | Memory Forensics | Mitre Attack | Ransomware investigation | Security operations | Sleuthkit | Volatility | Windows forensics
Education
Related jobs
-
800-53 | AWS IAM | Access Certification | Access Management | Active Directory401k plan with company matching | Bereavement | Employee assistance program | Employee discount program | Health, dental, and vision careSenior-level Full TimeRemote - Nationwide, United States R5h ago
-
Senior Security Engineer USD 170K-190KAI Vendor Risk | AWS | Code review | Data Governance | Dependency security401k | Equipment provided | Equity compensation package | Flexible vacation policy | Fully remoteSenior-level Full TimeRemote (United States) R17h ago
-
AWS | Azure | Bash | Documentation | Linux ServerFlexible time off | Healthcare benefits | Hybrid work model | Leave benefits | Retirement benefitsExecutive-level Full TimeDE2-Wilmington - 400 Bellevue Parkway, United … R22h ago
-
Senior Cyber Security Engineer USD 145K-204K802 1X | AWS CodeArtifact | Ansible | Application Firewall | Artifact RepositoriesSenior-level Full TimePittsburgh, PA or Remote R1d ago
-
Senior Security Operations Engineer USD 192K-240KAWS | Alert triage | Azure | Buildkite | CI/CDHybrid work environment | Mentorship | Remote work up to 4 weeks per yearSenior-level Full TimeSeattle, Washington, United States R1d ago
-
Senior Security Operations Engineer USD 192K-240KAWS | Alert triage | Azure | CI/CD | Cloud SecurityHybrid work | Mentorship | Open source contributions | Remote work up to four weeks per year | Tech blog contributionsSenior-level Full TimeSan Francisco, California, United States R1d ago
-
Senior Security Operations Engineer USD 192K-240KAWS | Azure | Buildkite | CI/CD | Cloud SecurityHybrid work | Mentorship | Remote work up to four weeks per yearSenior-level Full TimeNew York, New York, United States R1d ago
-
Computer Security System Specialist USD 95K-130KAnti-Malware | Anti-virus | Asset Management | Asset discovery | AutomationPublic trust clearance required | Remote work | Travel requiredMid-level Full TimeWork from home, VA, United States R1d ago
-
Tech Support Engineer - Tier 2 (Remote) USD 113K-167KAPIs | AWS | ClickHouse | Cloud Computing | EDRFlexible hours | Occasional weekend work | Remote workSenior-level Full TimeTampa, FL, US R1d ago
-
AI Security Engineer USD 100K-150KAccess Management | Adversarial Machine Learning | Authorization | Cloud Security | CryptographyCareer growth | Equal opportunity employer | Remote workSenior-level Full TimeUnited States - Remote R1d ago
-
AI Security Engineer USD 100K-150KAccess Control | Access Management | Authorization | Cloud Security | CryptographySenior-level Full TimeUnited States - Remote R1d ago
-
Oracle Cloud Security Engineer USD 100K-150KAccess Management | Automation | Bash | CIS Benchmarks | Cloud GuardMid-level Full TimeUnited States - Remote R1d ago
-
Oracle Cloud Security Engineer USD 100K-150KAccess Control | Access Management | Bash | CIS Benchmarks | Cloud GuardMid-level Full TimeUnited States - Remote R1d ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Authentication | Authorization | Bot ProtectionMid-level Full TimeUnited States - Remote R1d ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Authentication | Authorization | Bot ProtectionCareer growth | Diversity and inclusion | Equal opportunity employer | Remote workMid-level Full TimeUnited States - Remote R1d ago
-
Senior Software Engineer USD 130K-145K.NET | .Net Core | Access Management | Agile | App Service401k | Continuing education and training | Health and wellness days | Hybrid or remote work schedule | PTOSenior-level Full TimeUnited States - Remote R1d ago
-
DevSecOps Engineer USD 65K-136KAWS GovCloud | AWS Inspector | AWS Security | AWS Security Hub | Access Control401k match | Dental insurance | Employee assistance | Flexible spending account | Health savings accountMid-level Full TimeBethesda (REMOTE), MD, US R1d ago
-
Cybersecurity / IAM Engineer USD 90K-208KAWS GovCloud | Audit Logging | Certificate management | Cloud Security | Compliance reporting401k matching | Dental insurance | Employee assistance program | Flexible spending account | Health savings accountSenior-level Full TimeBethesda (REMOTE), MD, US R1d ago
-
Principal Consultant, Cloud DFIR (Unit 42) - Remote USD 151K-208KAWS | AWS GuardDuty | AWS Security | AWS Security Hub | Access ManagementRemote work | Travel up to 20 percentSenior-level Full TimeHarrisburg, Dauphin County, PA R1d ago
-
Staff Security Engineer, PSIRT USD 185K-230KAWS IAM | Amazon EKS | Android security | Attack surfaces | AuthenticationCaregiver support | Company holidays | ERGs | Fertility and family benefits | Flexible PTOSenior-level Full TimeRemote - USA R2d ago
-
API Security | AWS Secrets | AWS Secrets Manager | Access Management | Application Security401k matching | Employer Matching 401k Contributions | Life and disability coverage | Medical/Dental/Vision insurance | Parental leaveSenior-level Full TimeAustin - TX R2d ago
-
Security Sales Engineer USD 149K-198KAWS | Alert triage | Application Security | Azure | Cloud SecurityEmployee stock purchase plan | Hybrid work | Mentor and buddy program | Onboarding | Product trainingSenior-level Full TimeCalifornia, USA, Remote; Colorado, USA, Remote; … R2d ago
-
Mid-level Full TimeRemote, United States R2d ago
-
Senior Network Engineer USD 102K-149K800-53 | 802.1x | Access Control | Access Management | Centralized Logging401k match | Health insurance | Tuition assistance | Wellness programsSenior-level Full TimeRemote, United States R2d ago
-
Offensive Security Engineer (Remote) USD 110K-188KAdversary Emulation | Application penetration testing | Asset Security | Cloud penetration testing | Command and controlOnsite collaboration | Remote workMid-level Full TimeOther, CA, United States R2d ago