Updated 30+ days ago

Incident Responder

Birmingham, AL 35201
For inquiries and resume submissions contact Misty Stacy at Position Incident Responder Duration Direct Hire Location Open (remote available) Salary Negotiable RESPONSIBILITIES Solve challenging and complex problems, assisting with the technical aspects of DFIR investigations, and utilizing creativity and adaptability to perform the most advanced and mission-critical assessments Expected to constantly evolve in response to emerging threats and diverse client needs while adapting to the rapidly changing environment Operate as a technical resource within the Practice and actively participate in DFIR investigations including but not limited to Incident Response and Forensic investigations, Threat Discovery Engagements, Tabletop Exercises, and IR Retainer escalations Effective engagement communication, time management, and collaboration with peers Author comprehensive engagement deliverables that are proficiently tailored to both technical and managerial audiences and fully detail the technical findings, deficiencies, business impact, and realistic remediation strategies Utilize automation, orchestration, and scripting to reduce manual processes, improving overall efficiency while also enabling new capabilities to meet the rapidly changing needs of our clients Perpetually strengthen relevant skills, knowledge, and abilities to stay at the forefront of the information security industry Foster client relationships by providing support, information, and guidance Maintain a strong desire to learn, adapt, and improve along with a rapidly-growing company REQUIREMENTS Minimum of two (2) years of experience delivering incident response-related consulting services Minimum of one (1) years of experience in an enterprise-level consulting services role Over four (4+) combined years of IT and information security experience are strongly preferred Experience with standard Incident Response methodology and process Core capabilities including network traffic analysis, host forensics, malware handlingtriage, log review Experience with a variety of industry-related solutions including EDR, SIEM, NDR, FW, NGAV, Velociraptor, OSQueryKolide, and other tools preferred Experience with database querying and analysis preferred Experience with common scripting languages including PowerShell, Python, BASH, Go, and others Base knowledge of service offerings in AWS and Azure Awareness of attacker techniques, advanced threat groups, and integration of intelligence into an investigation Other relevant industry certifications, such as GCIA, GCIH, GDAT, GCFE, and GFCA Internal operational (non-consulting) experience is strongly preferred
Posting ID: 624267040Posted: 2021-05-07Job Title: Incident Responder