Senior DFIR Specialist
Tasks
- Advise clients during active incidents on containment eradication and recovery
- Analyze disk memory logs and network telemetry
- Collaborate with offensive security and infrastructure teams
- Collect preserve and analyze forensic artifacts
- Develop and refine DFIR methodologies and playbooks
- Direct complex ransomware and intrusion investigations
- Establish incident response delivery standards
- Establish scope timeline and impact
- Lead digital forensics and incident response engagements
- Mentor junior practitioners
- Produce forensic reports and executive summaries
- Support DFIR scoping estimation and statement of work development
Perks/Benefits
Skills/Tech-stack
Active Directory | Attack Narrative Development | Authentication Record Analysis | Azure Security | Cloud Forensics | Cyber incident | Cyber incident management | Digital forensics | Disk forensics | Enterprise threat modeling | Evidence Preservation | Forensic Reporting | Incident Management | Incident Response | Linux forensics | Log Analysis | Memory Forensics | Microsoft 365 | Microsoft 365 Forensics | Narrative development | Network Forensics | Ransomware investigation | Record Analysis | Threat hunting | Threat modeling | Windows forensics
Education
N/A
Related jobs
-
Application Monitoring | Change Management | Disaster Recovery | ITIL | Incident ManagementData center access | Onsite work | Shift schedule | Vendor escort supportSenior-level Full TimeGuelph, ON, Canada R2d ago
-
AWX | Active Directory | Ansible | Azure DevOps | CI/CDAnnual wellness contribution | Career development | Dental insurance | Employee assistance program | Flexible hoursEntry-level Full TimeSherbrooke, QC, Canada R12d ago
-
AWX | Active Directory | Ansible | Azure DevOps | CI/CDCareer development | Dental insurance | Disability insurance | Employee assistance program | Flexible scheduleEntry-level Full TimeQuébec, QC, Canada R12d ago
-
AWX | Active Directory | Ansible | Azure DevOps | CI/CDCafeteria on site | Career development | Employee assistance program | Flexible schedule | Free coffeeEntry-level Full TimeBoucherville, QC, Canada R12d ago
-
Senior Security Architecture Specialist (Hybrid) CAD 94K-157KAPI Security | Alerting | Architecture Decision Records | Code review | Compliance TraceabilityHybrid work environment | Office and remote work optionsSenior-level Full TimeMontreal 700, Canada R1mo ago
-
System Administrator, IT Operations CAD 65K-89KAzure SQL | Azure SQL Database | CentOS | Certificate-based authentication | Dell SANAdvanced paid hours | Corporate discounts | Flexible work schedule | Hybrid work | Paid trainingMid-level Full TimeQuebec, Canada R1mo ago