Digital Forensics and Incident Response Specialist

Position Summary:

We are seeking a highly skilled and motivated Digital Forensics and Incident Response (DFIR) Specialist to join our cybersecurity team. The ideal candidate will be responsible for investigating and responding to cybersecurity incidents, conducting digital forensic investigations, and implementing strategies to prevent future incidents. This role requires deep technical expertise, strong analytical skills, and the ability to work under pressure in a fast-paced environment.

Key Responsibilities:

• Incident Response:
• Lead and coordinate responses to cybersecurity incidents, including identification, containment, eradication, and recovery.
• Analyze and investigate security breaches to determine the root cause and impact.
• Digital Forensics:
• Conduct digital forensic investigations on a variety of digital devices, including computers, mobile devices, and network systems.
• Collect, preserve, and analyze digital evidence in accordance with legal and regulatory requirements.
• Threat Analysis:
• Monitor and analyze security alerts and threat intelligence to identify potential security incidents.
• Conduct threat hunting activities to proactively identify and mitigate security threats.
• Reporting and Documentation:
• Prepare detailed incident reports, including findings, recommendations, and remediation plans.
• Maintain accurate and thorough documentation of all incident response activities and forensic investigations.
• Security Improvement:
• Collaborate with IT and security teams to implement security controls and best practices to prevent future incidents.
• Conduct post-incident reviews to identify lessons learned and improve incident response processes.
• Training and Awareness:
• Provide training and guidance to internal teams on incident response procedures and digital forensics best practices.
• Develop and deliver security awareness programs to educate employees on cybersecurity threats and safe practices.
• Collaboration and Communication:
• Work closely with cross-functional teams, including IT, legal, compliance, and external vendors, to support incident response and forensic investigations.
• Communicate effectively with stakeholders to provide updates and ensure alignment with incident response plans.

Qualifications:

• Proven experience in digital forensics, incident response, or related roles.
• Strong knowledge of digital forensics tools and techniques, including EnCase, FTK, X-Ways, or similar platforms.
• Experience with incident response frameworks and methodologies, such as NIST, SANS, or similar.
• Excellent analytical and problem-solving skills.
• Strong understanding of network protocols, operating systems, and security technologies.
• Excellent written and verbal communication skills.
• Ability to work independently and manage multiple projects simultaneously.

Preferred Qualifications:

• Bachelor's or Masters degree in Computer Science, Information Security, or a related field.
• Certification in digital forensics or incident response (e.g., GCFA, GCIH, CCE, EnCE).
• Experience working in a Security Operations Center (SOC) or similar environment.
• Knowledge of scripting languages (e.g., Python, PowerShell) for automation and analysis.

Compensation

Base pay: $150,000 - $250,000

The salary range listed here has been provided to comply with local regulations and represents a potential base salary range for this role. Please note that actual salaries may vary within the range above or below, depending on experience and location. We look at compensation for each individual and base our offer on your unique qualifications, experience, and expected contributions. This position may also be eligible for other types of compensation in addition to base salary, such as variable bonus and/or stock bonus.

#LI-Remote