Forensics Specialist
Australia; Australia
Varonis
The world's only fully automated DSPM. Continuously discover and classify critical data, remove exposures, and stop threats in real-time with AI-powered automation.- 2+ years of experience working in Digital Forensics and Incident Response/SOC Teams
- Demonstrate knowledge of Windows and Linux forensic techniques, tools, and concepts
- Strong knowledge of network architecture fundamentals (Proxies, NAT, firewalls, IDPS, DMZ, etc.) as well as common network protocols and applications (TCP/UDP, DNS, HTTP/S, etc.)
- Strong technical foundation of standard Information Technology concepts and services
- Experience working with multiple enterprise security solutions (e.g., SIEMs, Firewalls, IDPS, AV/EDRs, IAM, DLP, etc.)
- Demonstrate proven experience in Threat Intelligence (TI) with a focus on analyzing and understanding the tactics, techniques, and procedures of known Threat Actors and Advanced Persistent Threats (APTs).
- Proven success contributing to a team-oriented environment
- Excellent communication and interpersonal skills
- Strong critical thinking, deductive reasoning, problem-solving, and prioritization skills
- Experience working with common cloud technology providers (e.g., AWS, GCP, Azure) is an advantage
- Be capable of adapting to a fluid and dynamic schedule, ensuring coverage during hours and days beyond the standard work week
- Become an essential member of our 24x7 follow-the-sun global team and collaborate closely with key stakeholders and customers.
- Continuously enhancing security measures and instilling confidence by utilizing the Varonis platform, IOCs, and diverse forensic artifacts.
- Independently lead and execute responses to high-profile cyber threat incidents in customer environments
- Work with the customer to follow up on items that require additional investigation.
- Conduct threat hunting using the Varonis platform and other SOC-related tools and platforms
- Contribute to, and improve existing team processes while identifying new opportunities for customer impact
- Contribute to the creation and enrichment of knowledge bases through detailed technical investigations and the discovery of new findings. Implement best practices based on these insights
- Engage in close collaboration with our blue team engineering team to enhance the functionality of tools and update investigation playbooks
- Serve internally and externally as a Cyber Security Subject Matter Expert (SME) to help educate peers and customers, when required
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation AWS Azure Blue team Cloud Cyber defense DFIR DNS DSPM Firewalls Forensics GCP Governance IaaS IAM Incident response Linux R&D Risk management SaaS SIEM SOC Threat intelligence Windows
Perks/benefits: Career development
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.