Director - Cyber & Digital Forensic Investigations - Hong Kong

Tasks

• Advise regulators under operational resilience requirements
• Analyze network flow data
• Apply DFIR tooling during live incidents
• Conduct incident response
• Lead breach response delivery
• Lead forensics imaging
• Maintain regulator ready evidentiary documentation
• Manage chain of custody
• Mentor delivery managers
• Oversee ransomware response
• Perform EDR threat hunting
• Perform digital forensics
• Perform malware triage
• Perform post incident hardening
• Perform threat actor attribution
• Reconstruct logs and audit trails
• Stay current on threat actor trends
• Support OFAC and HK sanctions advisory
• Support command and control reconstruction
• Support disclosure and notification compliance
• Validate decryptor and backup recovery

Perks/Benefits

• N/A

Skills/Tech-stack

Access logs | Arkime | Carbon Black | Chain of Custody | Cloud Forensics | CrowdStrike Falcon | Digital forensics | EDR | EnCase | Engineering Tools | FTK | Forensic Imaging | Ghidra | IDA Pro | ISO 27037 | Identity and Access Logs | Identity and access | Incident Response | Log Aggregation | Magnet Axiom | Malware analysis | Memory Forensics | Microsoft Defender | Microsoft Sentinel | Mitre Attack | NIST 800 | NIST 800-61 | NIST 800-86 | Network Forensics | OFAC compliance | Ransomware response | Rekall | Reverse Engineering | Reverse engineering tools | SANS DFIR | SIEM | Sanctions Compliance | SentinelOne | Splunk | Threat Actor | Threat Intelligence | Threat actor attribution | Threat hunting | VMware Carbon Black | Volatility | Wireshark | X-Ways | X64dbg | Zeek