Join Our Cybersecurity & DFIR Team

Incident Response & Digital Forensics Expert

We are looking for a highly skilled and hands-on Incident Response Expert to join our dynamic team. You will lead engagements and provide expert guidance during cybersecurity incidents, working closely with clients to protect and mitigate against advanced cyber threats. This role requires a balance of technical expertise and strategic leadership in both incident response and threat hunting.

Responsibilities – What You’ll Do

• Participate in incident response investigations, conduct log analysis and effectively contain, mitigate, and guide recovery from security breaches.
• Perform detailed log analysis, host-based and network-based forensics, and malware analysis.
• Conduct digital forensics analysis on diverse evidence types, including disk, memory, network, and cloud artifacts.
• Collaborate with clients to validate and address identified threats.
• Enhance IR capabilities by creating and refining tools, correlation alerts, scripts, and automation.
• Actively participate in proactive threat hunting to identify targeted attacks and new emerging threats.
• Generate comprehensive, professional reports based on findings from investigations.
• Stay updated on emerging threats, threat actors, attack vectors, and advancements in security technologies.

Requirements – What You’ll Need

• Proven (3+ years) experience in DFIR or alternatively, 3+ years of proven experience in IT or cybersecurity and at least 1 year of intensive hands-on experience in DFIR.
• Hands-on experience with forensic tools and platforms, as well as threat hunting tools and query languages (e.g., Splunk, QRadar, ELK, KQL, SQL).
• A strong passion for problem-solving, learning, and tackling complex cyber threats.
• Exceptional communication and interpersonal skills, with fluency in both written and spoken English.
• Experience in scripting languages such as Python, PowerShell, C, or C#.
• Ability to work independently and collaboratively in a fast-paced environment.
• Proven experience with log analysis and advanced threat detection.

Preferred Qualifications – What Sets You Apart

• Knowledge of cloud services, cloud architecture, Kubernetes, and major cloud platforms (AWS, Azure and GCP).
• Experience in malware analysis and reverse engineering.
• Familiarity with Managed Detection and Response (MDR) solutions like SentinelOne and CrowdStrike.
• Understanding of noticeable threat actors and expertise in threat intelligence analysis.
• Relevant certifications (GCFE, GCFA, GCFR, GCTI, OSCP, GCTD, or equivalent).

Please send your resume to the following email address:

01100100 01100001 01101110 01000000 01100110 00101101 01101101 00101110 01100011 01101111 00101110 01101001 01101100