What You Will Do- Manage intake, processing, and disposition of physical devices and digital media for incident response, ensuring proper physical space management, chain of custody, forensic imaging, and digital media lifecycle management.
- Support the physical and virtual infrastructure used for customer engagement, responding to consultants' and customers' requests related to engagement data and technology.
- Collaborate with cross-functional teams to implement solutions that meet functional requirements, including troubleshooting and problem resolution.
- Utilize advanced and specialized knowledge of legacy products, services, technologies, and infrastructure to enhance usability, availability, and security.
- Leverage expertise in security-related protocols, products, and internally developed technologies to develop innovative security solutions.
- Participate in and provide security solutions across all stages of the digital media lifecycle, including forensic imaging efforts and data pre-processing initiatives.
- Assist with Change Management procedures by engaging in pre-deployment Quality Assurance testing of planned technology modifications to ensure reliability and serviceability.
- Document processes and procedures related to digital media lifecycle management, forensic imaging, and data pre-processing to improve operational efficiency.
- Serve as the primary Emergency Incident Response (EIR) Intake consultant, handling inbound calls, verifying customer service levels, creating account records, and leading initial scoping calls.
- Coordinate the commercial paperwork required to initiate work efforts, including Engagement Work Orders (EWO) and Statements of Work (SOW).
- Manage initial evidence intake for EIR engagements, provisioning forensic tooling such as Endpoint Detection & Response (EDR) agents and other third-party forensic analysis solutions.
- Provision cloud analysis Virtual Machines (VMs) for consultants, serving as a subject matter expert on VM provisioning and troubleshooting.
- Manage and maintain lab physical equipment to support forensic investigations and incident response efforts.
What You Will Bring- At least 5 years of professional experience with managed threat response and remediation.
- 5 years of experience with threat actor tactics, techniques, and procedures (TTPs), identifying and analyzing vulnerabilities and using tools to exploit them.
- 5 years of experience in digital forensics, network forensics, and security practices.
- 5 years of experience managing incident response engagements, including documentation and case handling in CRM systems.
- 5 years of experience with encryption methods and Multi-Factor Authentication (MFA).
- 5 years of experience developing end-user documentation.
- 5 years of experience with firewall management and information security protocols.
- 5 years of experience in Microsoft Windows, Linux, and Unix system administration.
- 5 years of experience with network security infrastructure, including load balancers, reverse proxies, and web proxies.
- 5 years of experience provisioning cloud infrastructure using AWS and Azure, and troubleshooting cloud infrastructure issues.
- 5 years of experience provisioning forensic tooling for Endpoint Detection & Response (EDR) solutions.
- 5 years of experience leading Emergency Incident Response scoping calls.
In the United States, the base salary for this role ranges from $150,000 to $250,000. In addition to base salary, we offer additional compensation including bonus eligibility and a comprehensive benefits package. A candidate's specific pay within this range will depend on a variety of factors, including job-related skills, training, location, experience, relevant education, certifications, and other business and organizational needs.
Resumes to:J. Boyer [email protected].
