Forensics / Incident Response SME
Tasks
- Analyze Windows memory
- Analyze network events and reconstruct timelines
- Collect volatile evidence
- Conduct forensic analysis
- Conduct malware detection analysis
- Conduct security assessments
- Develop and follow standard operating procedures
- Develop and optimize malware analysis laboratory
- Develop detection rules for security tools
- Evaluate security alerts and prioritize response
- Maintain evidence chain of custody
- Manage advanced persistent threat handling
- Perform Windows registry analysis
- Perform file system timeline analysis
- Perform forensic imaging and media analysis
- Perform incident response
- Perform lateral movement analysis
- Perform lessons learned activities
- Prepare forensic investigation reports
- Provide incident management guidance to SOC
- Run tabletop exercises
- Support Threat Hunting and Threat Intelligence
Perks/Benefits
- 100 percent remote work
- 401k matching
- FSA programs
- Health coverage contribution
- Online education and training portal
- Paid federal holidays
- Paid time off
- Referral bonuses
- Short-term disability and life insurance
- Wellness and fitness program
Skills/Tech-stack
AWS | Alert triage | Chain of Custody | Device Forensics | Digital forensics | Evidence collection | Evidence reporting | File System | File System Timeline Analysis | Forensic Imaging | Incident Response | Malware analysis | Memory Forensics | Mobile Device | Mobile Device Forensics | Network Forensics | Operating procedures | Protocol analysis | REMnux | Registry analysis | Reverse Engineering | SANS SIFT | Security alert triage | Standard Operating Procedures | Threat Intelligence | Threat hunting | Timeline Analysis | Timeline reconstruction | Volatile Evidence Collection | Windows Memory Forensics | Windows Registry | Windows registry analysis
Education
N/A
Related jobs
-
Senior SOC Analyst/Lead USD 135K-150KCIRT | CVE management | Cause analysis | Computer Networking | Computer fundamentals24x7 shift coverage | Flexible shift scheduling subject to operational needs | Remote workSenior-level Full TimeWork from home, VA, United States R12h ago
-
SOC Mid-Level Analyst USD 120K-145KAccess Management | Application Security | Cloud Security | EDR | Endpoint SecurityRemote work | Shift workMid-level Full TimeWork from home, VA, United States R12h ago
-
Insider Threat Analyst - 885 USD 111K-219KAccount monitoring | Behavioral Analysis | DLP | DTEX | Data Loss PreventionRemote work opportunityMid-level Full TimeUS Arlington, VA R1d ago
-
Associate Security Analyst USD 77K-82KAccess Management | Detection and Response | EDR | Email Security | Endpoint Detection and ResponseMentorship | Remote work | Travel up to 10 percentMid-level Full TimeRemote, United States R2d ago
-
AWS | Adversary Emulation | Agentic AI | Azure | Cyber Kill ChainRemote workSenior-level Full TimeMcLean, VA, United States R2d ago
-
AWS | Agentic AI | Attack Vector | Attack vector analysis | AzureRemote workMid-level Full TimeMcLean, VA, United States R2d ago
-
Event Analyst II, Third Party Risk Management USD 55K-95KAudit Readiness | Cybersecurity | Data Analysis | Documentation | FFIEC401k matching | Employee assistance program | Paid Holidays | Paid time off | Tuition reimbursementEntry-level Full Time601 S. Tryon Street, NC R4d ago
-
AWS | Access Control | Active Directory | Azure | BashFamily leave | Health care plan | Paid time off | Retirement plan | Training and developmentSenior-level Full TimeUnited States - Remote R4d ago
-
Customer Trust Specialist USD 69K-104K800-53 | AWS | Access Management | Application logs | Architecture DiagramsMid-level Full TimeRemote Cananda | Remote United States, … R5d ago
-
Incident Response Business Analyst - West Coast USD 70K-120KData Analysis | Incident Response | Postmortem Analysis | Problem Solving | Process ImprovementOn-call rotation | Telecommuting optionsMid-level Full TimeUnited States (Remote) R5d ago
-
SOC Analyst USD 86K-125KACAS | Antivirus | IDS/IPS | Incident Response | KQLDental insurance | Health insurance | Paid Holidays | Paid life insurance | Paid time offMid-level Full TimeRemote (United States) R5d ago
-
Sr. SOC Analyst (WarU E-ITSS) USD 104K-136KACAS | Burp | Forensics | HBSS | HIPSDental insurance | Health insurance | Paid Holidays | Paid life insurance | Paid time offSenior-level Full TimeRemote (United States) R5d ago
-
Threat Detection & Response Analyst (Tier 1) USD 80K-106KCloud Security | Cyber Kill Chain | Database security | Detection and Response | Digital forensicsEducational assistance | Health and wellness benefits | Income replacement for qualified employees with disabilities | Paid Holidays | Paid maternity and parental bonding leaveMid-level Full TimeWatermark - 410 North Scottsdale Road, … R6d ago
-
Senior Security Operations Center (SOC) Analyst USD 105K-133KAWS | Alert triage | Bash | Cloud Security | Cloud platformSenior-level Full TimeUS NJ Remote, United States R6d ago
-
Mid-level Full TimeRemote, MD, US R7d ago
-
AWS | Artificial Intelligence | Azure | Cloud Security | Cloud platformFlexible hybrid schedule | Health insurance | Hybrid work model | Life insurance | Paid time offSenior-level Full TimeTampa, FL, United States R7d ago
-
Sr. GRC Analyst USD 135K-165K800-53 | API Integration | AWS | Access Management | Audit Trail401k match | Childcare assistance | Flexible time off | Health coverage | Paid parental leaveSenior-level Full TimeUnited States R7d ago
-
Assurance | Auditing | Benchmarking | Compliance | Control AssessmentFlexible hybrid work model | Health insurance | Life insurance | Paid time off | Pension/retirement benefitsSenior-level Full TimeTampa, FL, United States R7d ago
-
Cyber Security Analyst USD 90KApplication Security | Incident Response | Log Monitoring | Operating System | Operating system securityHybrid work schedule | Training content developmentEntry-level Full TimeTaylor, TX, United States R8d ago
-
Information Security Analyst - Remote USD 95K-130K800-53 | Access Controls | Compliance | Cybersecurity Framework | Data Privacy401k employer match | Annual company retreat | Flexible PTO | Flexible working arrangements | Medical dental vision coverage 100 percent paidMid-level Full TimeSan Diego, California, United States - … R8d ago
-
Cyber Security Analyst USD 90KApplication Security | Awareness Training | Configuration analysis | Cyber Threat | Cyber Threat IntelligenceHybrid schedule | Learning and career growthMid-level Full TimeTaylor, TX, United States R8d ago
-
Privacy Analyst USD 135K-159KAirflow | Automation | CCPA | DPIA | Data Analysis401k matching | Medical/Dental/Vision | Quarterly in person surges | Quarterly in person working sessions | Remote-first work environmentMid-level Full TimeRemote - USA R8d ago
-
Senior Security Analyst - REMOTE USD 120K-140KApplication Security | Audit management | Data Architecture | Elastic | Governance RiskBackground checks | Drug screening | Remote workSenior-level Full TimeCincinnati, OH, US R8d ago
-
Cyber Defense Senior Analyst (Remote) USD 134K-200KAWS | Application Firewall | Azure | Capture analysis | Digital forensics401k matching | Dental insurance | Flexible schedule | Flexible time off | Hybrid workSenior-level Full TimeUnited States, UNITED STATES, United States R8d ago
-
GRC Specialist USD 88K-110KAWS | Access Management | Access Recertification | Artificial Intelligence | Azure401k matching | Equity ownership | Flex fund stipend | Health coverage | Hybrid workMid-level Full TimeNew York, New York, USA R8d ago