Principal Consultant, DFIR, Reactive Services (Unit 42)
Tasks
- Collaborate with internal teams and stakeholders
- Contain security incidents
- Determine scope of compromises
- Determine source of compromises
- Examine database logs
- Examine firewall logs
- Examine web logs
- Guide clients through forensic investigations
- Identify indicators of compromise
- Improve security posture
- Investigate data breaches
- Manage incident response engagements
- Mentor junior team members
- Perform host-based analysis
- Provide remediation recommendations
- Scope incident response work
Perks/Benefits
Skills/Tech-stack
Breach response | Data Breach | Data breach response | Database logs | Digital forensics | EnCase | FTK | Firewall logs | Host based analysis | Incident Response | Indicators of compromise | Linux forensics | Log Analysis | MacOS forensics | Redline | SIFT | Splunk | Volatility | Web logs | Windows forensics | Wireshark | XWays
Education
Related jobs
-
Information Risk Management Senior Consultant CAD 113K-163KAction Planning | Cloud Security | Compliance | Corrective Action | Corrective Action PlanningDental insurance | Employee assistance program | Health insurance | Hybrid work arrangement | Life insuranceSenior-level Full TimeCAN, Ontario, Toronto, 200 Bloor Street …5d ago
-
Application Security | Cloud Security | Code review | Exploit Development | External Network SecuritySenior-level Full TimeOttawa, ON, Canada14d ago
-
SecOps Business Development Solution Consultant CAD 207K-253K802.11 | 802.1x | Active Directory | BGP | CMMCritical illness insurance | Disability insurance | Employee and family assistance program | Group Registered Retirement Savings Plan | Health spending accountSenior-level Full TimeVancouver, BC, Canada15d ago
-
Infrastructure Consultant – Network & Security CAD 101K-150K800-53 | AWS | Active Directory | Bash | CIS BenchmarksCertification sponsorship | Comprehensive benefits | Continuous learning budget | IR premiums | On-call rotationMid-level Full TimeOttawa, ON R17d ago
-
Senior Consultant, Cyber Security Operations Centre CAD 84K-128KActive Directory | EDR | Hunting | IDS/IPS | Incident ResponseFlexible benefits | Personal Time Off | Reimbursement for wellness initiatives | Wellness reimbursement | Wellness supportSenior-level Full TimeToronto - Wellington St, Canada19d ago
-
Sr. Consultant - Cybersecurity | Remote, Vancouver, BC CAD 103K-137KAcceptance Testing | Business Continuity | Business Impact Analysis | Business impact | Capacity PlanningProfessional development support | Professional training resources | Remote work | Volunteer opportunities | Work from home support technologySenior-level Full TimeCA-BC-Home, Canada R21d ago
-
Artificial Intelligence | Batch scripting | EDR | Event management | Google CloudSenior-level Full TimeBurnaby, BC, CA, V5G 4S4 R29d ago
-
Endpoint Security Consultant CAD 90K-140KAgent deployment | Detection and Response | Endpoint Detection and Response | Endpoint Security | Endpoint detectionCompany training | Employee resource groups | Flexible work environment | Inclusive cultureSenior-level Contract Full TimeToronto29d ago
-
Cybersecurity Generalist Senior Associate CAD 84K-134KAccess Management | Application Security | Asset Management | Business Continuity | Business ResilienceSenior-level Full TimeOttawa - 99 Bank Street, Canada30d ago
-
Strategic Advisory Services Consultant (Remote, CAN) CAD 90K-135KCSIRT | Communication | Cybersecurity | Cybersecurity strategy | GovernanceCompetitive vacation and holidays | Employee networks | Paid adoption leave | Paid parental leave | Professional development opportunitiesSenior-level Full TimeCAN ON Remote, Canada R1mo ago
-
Incident Response Principal Consultant (Remote CAN) CAD 135K-200KAWS | Cloud platform | Computer forensics | Digital forensics | Google CloudAdoption leave | Employee networks | Paid parental leave | Professional development | Remote workSenior-level Full TimeCAN AB Remote, Canada R1mo ago
-
Senior Security Consultant- Managed Services CAD 94K-132KAlert Tuning | Check Point | Cisco | CrowdStrike | Detection engineeringFlexible scheduling | Paid training | Remote work optionsSenior-level Full TimeDefault Location - CAN, Canada1mo ago
-
Senior Strategic Cybersecurity Consultant CAD 120K-140K800-53 | CIS Controls | Cyber Resilience | Governance Risk | Governance risk complianceAnnual Lifestyle Spending Account | Certification support | Employee referral bonus | Full benefits | Matching RRSP programSenior-level Full TimeCanada R1mo ago
-
Cyber Security Consultants (Onsite - Regina) CAD 98K-140KAccess Management | Adversarial Simulation | Application-layer | Application-layer attacks | Audit LogsEmployee ownership options | Paid sabbatical | Professional development support | Work-life balanceMid-level Full TimeRegina, Saskatchewan R1mo ago