Incident Response Principal Consultant (Remote)

About The Position

Requirements

• Team leadership experience in a matrixed consulting environment
• Incident Response: experience conducting or managing incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hacktivists.
• Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise.
• Network Forensic Analysis: strong knowledge of network protocols, network analysis tools like Bro/Zeek or Suricata, and ability to perform analysis of associated network logs.
• Reverse Engineering: ability to understand the capabilities of static and dynamic malware analysis.
• Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations.
• Network Operations and Architecture/Engineering: strong understanding of secure network architecture and strong background in performing network operations.
• Cloud Incident Response: knowledge in any of the following areas: AWS, Azure, GCP incident response methodologies.
• Communications: strong ability to communicate executive and/or detailed level findings to clients; ability to effectively communicate tasks, guidance, and methodology with internal teams
• Capable of completing technical tasks without supervision.
• Desire to grow and expand both technical and soft skills.
• Strong project management skills.
• Contributing thought leader within the incident response industry.
• Ability to foster a positive work environment and attitude.
• Ability to travel on short notice, up to 30% of the time.
• BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field. Applicants without a degree but with relevant work experience and/or training will be considered.

Responsibilities

• Lead incident response engagements
• Develop and use new methods to hunt for bad actors across large sets of data.
• Work under the direction of outside counsel to conduct intrusion investigations
• Perform host and/or network-based forensics across Windows, Mac, and Linux platforms.
• Perform basic malware analysis.
• Produce high-quality written and verbal reports, presentations, recommendations, and findings to key stakeholders including customer management, regulators, and legal counsel.
• Demonstrate industry thought leadership through blog posts, CrowdCasts, and other public speaking events.

Benefits

• Market leader in compensation and equity awards
• Comprehensive physical and mental wellness programs
• Competitive vacation and holidays for recharge
• Paid parental and adoption leaves
• Professional development opportunities for all employees regardless of level or role
• Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
• Vibrant office culture with world class amenities
• Great Place to Work Certified™ across the globe