As an Incident Response Consultant, you will be responsible for delivering services engagements across the region. You will be a member of a highly collaborative industry leading team that thrives on the daily challenges of stopping breaches from the world's most sophisticated adversaries. This is an individual contributor, senior technical consulting role that requires hands-on technical expertise and ability to communicate effectively with both technical and business stakeholders.
The right individual for our team should have excellent energy, drive and a real desire to help organisations respond to security incidents. The ability to work in a high stress, high pressure situation is a must as well as the ability to work together with the team around the APJ region. If you have forensics, incident response, and cyber security experience you are encouraged to apply.
What You'll Do:
- Lead incident response engagements. This is an excellent opportunity for someone to 'own' their role and operated independently.
- Perform advanced host and/or network-based forensics across Windows, Mac, and Linux platforms.
- Advise organizations while they respond to threat actor activity.
- Produce high-quality written and verbal reports, presentations, recommendations, and findings to customer management.
- Present technical material to non-technical and technical audiences
- Demonstrate industry thought leadership through blog posts, CrowdCasts, and other public speaking events.
What You’ll Need:
Required:
- Must be able to work on weekends. Standard working days will be Thursday through Monday or something similar (discussion welcome).
- Incident Response: experience conducting or managing incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hactivists.
- Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise.
- Incident Remediation: deep understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations.
- Communication: exceptional written and oral communication skills. Ability to write and present technical content, including being able to present to senior executives.
Preferred:
- Network Forensic Analysis: strong knowledge of network protocols, network analysis tools, and ability to perform analysis of associated network logs.
- Threat Intelligence: familiarity with threat intelligence, adversary attribution and its application to Incident response
Bonus Points:
- Qualifications: following certifications preferred but not required GIAC Certified Forensics Analyst (GCFA), GIAC Certified Incident Handler (GCIH) or similar