Forensics / Incident Response SME
Tasks
- Analyze Windows memory
- Analyze network events and reconstruct timelines
- Collect volatile evidence
- Conduct forensic analysis
- Conduct malware detection analysis
- Conduct security assessments
- Develop and follow standard operating procedures
- Develop and optimize malware analysis laboratory
- Develop detection rules for security tools
- Evaluate security alerts and prioritize response
- Maintain evidence chain of custody
- Manage advanced persistent threat handling
- Perform Windows registry analysis
- Perform file system timeline analysis
- Perform forensic imaging and media analysis
- Perform incident response
- Perform lateral movement analysis
- Perform lessons learned activities
- Prepare forensic investigation reports
- Provide incident management guidance to SOC
- Run tabletop exercises
- Support Threat Hunting and Threat Intelligence
Perks/Benefits
- 100 percent remote work
- 401k matching
- FSA programs
- Health coverage contribution
- Online education and training portal
- Paid federal holidays
- Paid time off
- Referral bonuses
- Short-term disability and life insurance
- Wellness and fitness program
Skills/Tech-stack
AWS | Alert triage | Chain of Custody | Device Forensics | Digital forensics | Evidence collection | Evidence reporting | File System | File System Timeline Analysis | Forensic Imaging | Incident Response | Malware analysis | Memory Forensics | Mobile Device | Mobile Device Forensics | Network Forensics | Operating procedures | Protocol analysis | REMnux | Registry analysis | Reverse Engineering | SANS SIFT | Security alert triage | Standard Operating Procedures | Threat Intelligence | Threat hunting | Timeline Analysis | Timeline reconstruction | Volatile Evidence Collection | Windows Memory Forensics | Windows Registry | Windows registry analysis
Education
N/A
Related jobs
-
Cybersecurity Analyst II USD 81K-121KAccess Management | Analytics | Automation | Awareness Training | Cloud SecurityEntry-level Full TimeRemote (United States) R18h ago
-
Cyber Security Analyst I USD 65K-75KAlert investigation | Azure Sentinel | Google Chronicle | Incident Response | Microsoft DefenderMid-level Full TimeUnited States - Remote R21h ago
-
Junior Cybersecurity Analyst USD 69K-90KAWS | AWS CloudWatch | AppGate Secure Access | Azure Fundamentals | Azure Monitor24x7 monitoring environment | Hybrid work environment | Rotating shiftsEntry-level Full TimeRemote, United States R1d ago
-
AI Driven | AI Driven Security Operations | AI-driven security | AWS | AzureHybrid work flexibility | Remote work flexibility | Travel opportunitiesSenior-level Full TimeRemote - Texas, United States R1d ago
-
Information Security GRC Analyst III USD 94K-164KAccess Management | Application Security | Authentication | Authorization | Computer NetworkingSenior-level Full TimeDayton WFH, United States R1d ago
-
Cybersecurity Controls Assessor USD 114K-185K800-53 | Anomaly Detection | Audit Readiness | CMMC | Continuous Monitoring401k match | Employee assistance program | Health, dental, vision insurance | Hybrid work schedule | Paid time offSenior-level Full TimeIndianapolis, North Building Meridian Center (US-MC-NB), … R1d ago
-
Senior Cybersecurity Analyst | Fraud (Remote) USD 100K-180KAI Risk | AI risk mitigation | Account takeover | Adversarial Machine Learning | Anomaly DetectionMentorship | Remote workSenior-level Full TimeGEORGIA - VIRTUAL - GA01, United … R1d ago
-
Level 2 Cyber Security Analyst USD 100K-100KAuthentication | Bash | Crowdstrike EDR | DNS | Defender for EndpointOn-call rotation | Remote work | Training and academy enrollmentMid-level Full TimeDenver, CO R1d ago
-
InfoSec GRC Analyst (St. Louis) USD 77K-96KArtificial Intelligence | Audit and compliance | Audit documentation | Audit planning | Compliance Monitoring401K company matching | Bereavement | Disability insurance | Employee assistance program | Employee discount programMid-level Full TimeRemote - Nationwide, United States R1d ago
-
Helpdesk Technician III USD 85K-100KActive Directory | Automate | Autopilot | Backup | ConnectWise ManageSenior-level Full TimeUnited States - Remote R2d ago
-
Security Control Assessor IV USD 126K-136KActive Directory | Authorization to Operate | Continuous Monitoring | Cyber Threat | Cyber Threat Intelligence401k match | Certificate incentive program | Dental insurance | Flexible spending account | Flexible work environmentSenior-level Full TimeUnited States R2d ago
-
Associate Cyber Security Analyst (Remote) USD 61K-104KAccess Controls | Endpoint protection | Incident Response | Java | LinuxMid-level Full TimeNationwide Remote Office (US99), United States R2d ago
-
Threat Detection & Response Analyst (Tier 1) USD 80K-106KAntivirus | Cloud Security | Cyber Kill Chain | Detection and Response | Digital forensicsEducational assistance | Health and wellness benefits | Income replacement for qualified employees with disabilities | Paid Holidays | Paid Maternity LeaveMid-level Full TimeWatermark - 410 North Scottsdale Road, … R2d ago
-
Cyber Threat Detection and Hunting, AVP USD 112K-153KAI Agents | Automation | Bash | Data Parsing | Detection engineeringEducational assistance and training | Health and wellness benefits | Income replacement for qualified employees with disabilities | Paid Holidays | Paid Maternity LeaveExecutive-level Full TimeNew Jersey Office - 210 Hudson … R2d ago
-
Mid-level Full TimeNew Jersey Office - 210 Hudson … R2d ago
-
CIS Controls | Connectwise | CrowdStrike | EDR | Firewall401k match | Health savings account | Life insurance | Long-term disability | Medical/Dental/VisionMid-level Full TimeNew Orleans, LA R2d ago
-
Cybersecurity Risk and Compliance Analyst USD 67K-119K800-53 | AWS | Audit Support | Authorization | Change ManagementCharity involvement | Recognition programs | Time off programs | Volunteer days | Wellness initiativesMid-level Full TimeUnited States R3d ago
-
Junior Cyber SME Intern USD 69K-89KDetection Systems | FISMA | FedRAMP | Firewalls | Incident Response401k match | Accident insurance | Dental insurance | Flexible spending account | Health insuranceEntry-level Full Time InternshipRemote, United States R3d ago
-
Mid-level Full TimeUnited States R3d ago
-
API | Advanced persistent threat | CrowdStrike Query Language | Cyber Threat | Cyber Threat IntelligenceEmployee volunteer opportunities | Paid adoption leave | Paid parental leave | Paid time off | Professional developmentSenior-level Full TimeUSA VA Remote, United States R3d ago
-
Associate Analyst, Falcon Complete (Hybrid) USD 70K-95K.NET | C Sharp | C# | Computer forensics | Incident ResponsePaid adoption leave | Paid parental leave | Paid time off | Professional developmentMid-level Full TimeSt. Louis, United States R3d ago
-
Assembly | Binary file analysis | C# | C++ | Exploit analysisCompetitive vacation and holidays | Employee networks | Paid adoption leave | Paid parental leave | Paid time offSenior-level Full TimeUSA VA Remote, United States R6d ago
-
Night Shift SOC Analyst - Level 1 USD 82K-104KCase management | Cyber Threat | Cyber Threat Intelligence | DDoS | DNS24/7 shift schedule | On-the-job experience | Training opportunitiesMid-level Full TimeUnited States - Remote R6d ago
-
Cyber Defense Forensics Analyst USD 87K-186KAzure | C++ | Cause analysis | Computer forensics | Digital forensics401k plan | Dental coverage | Hybrid work model | Medical coverage | On-call rotationMid-level Full TimeAlpharetta, GA, US, 30009 R6d ago
-
Cyber Incident Response Analyst / Wilmington, DE USD 90K-110KAudit | Compliance | Controls | Cyber Forensics | Cyber monitoringFlexible time off | Healthcare benefits | Hybrid work model | Leave benefits | Retirement benefitsEntry-level Full TimeDEL-Wilmington - 100 Bellevue Parkway, United … R6d ago