DFIR Cybersecurity Consultant (Remote)
Job Description
Actively participate in forensic analysis during Incident Response and digital forensics engagements concerning ransomware, business email compromises, litigation support, and other cyber incidents.
Must be customer-service oriented and dedicated to resolving issues effectively and efficiently.
Demonstrate the ability to listen to and understand the client's needs and communicate findings in a digestible format.
High-availability and responsiveness to deadlines.
Communicate and engage with threat actors to resolve cybersecurity incidents.
Take part in creating, developing, and introducing modern forensic techniques or solutions.
Continuous self-development and training regarding Incident Response and Digital forensics best practices.
Perform audits of computer systems and networks.
Produce high-quality technical reports.
Qualifications And Required/Preferred Experience
- A Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Security, or other related fields is preferred, but not required.
- 1 to 3 years of relevant experience with a proven track record in data analysis related to ransomware, business email compromise, litigation support, and other cyber incidents.
- Professional certifications such as GCFE, GCFA, GCIH, GNFA, GASF, CISSP, and other relevant certifications are preferred.
- Knowledge and experience utilizing forensic tools, software, and methodologies.
- Knowledge of scripting languages, such as C, C++, Visual Basic, Python, PowerShell, and Bash, is desirable, but not required.
- Collaborate with the team to ensure that forensics processes and procedures adhere to industry standards.
- Working on internal projects such as coding, scripting, documentation, and creating tools related to innovation and automation.
- Assist with EDR deployment, monitoring, and triage collection.
Location
Remote