Offer summary

Qualifications:

Bachelor's degree in Computer Science, Information Services, or IT Security, or equivalent with 3+ years of IT security experience., At least 3 years of experience in cybersecurity incident response and investigations., Strong skills in digital forensic tools and analysis of code such as PowerShell, PERL, Python., Cybersecurity certifications are preferred..

Key responsibilities:

Serve as the primary contact for cybersecurity incident escalations.

Conduct forensics on memory, disks, and logs, and perform malware analysis.

Manage the full incident response lifecycle and prepare incident reports for management.

Assist the Threat Intelligence group with threat hunting, threat readiness, and automation initiatives.

Job description

Mostly Remote, Close Proximity to NYC Metro Region Required

The client is seeking a highly technical Incident Response & Forensics Specialist
. This position is a part of the IT Threat Intelligence group within the Cyber Security Operations Center
and will be expected to provide direct support to the 247 Cyber Security Monitoring group as needed.
The responsibilities include, but are not limited to, the following:
• Serving as a primary point of contact for client CSOC & MSSP Cybersecurity Incident escalations
• Interfaces directly with vendors & third parties for notifiedobserved compromises
• Forensics on memory, disks, and logs
• Malware analysis (dynamic & static)
• Involvement in full incident response lifecycle
• Processes evidence in accordance with Chain of Custody
• Creates Incident reports to brief to executive management
• Provide recommendations to prevent similar incidents
• Assist the Threat Intelligence group in other functions including
o Threat Intelligence Threat Hunting
o Threat Readiness
o Cyber Content Engineering & Automation

Skills:
• Excellent communication skills
• Strong experience with digital forensic tools
• Strong understanding and analysis of code such as Powershell, PERL, Python
• Cybersecurity certifications (preferred)
• Experience with OT & PCI technologies (preferred)

Minimum requirements:
• Bachelors degree in Computer Science, Information Services, or IT Security related field
–Or A satisfactory equivalent with at least 3 years of ITSecurity experience.
• Minimum of 3 years of experience Tier 1 & 2 support for cyber security operation center.
• Minimum of 3 years’ experience with performing incident response functions & investigations