Incident Response & Forensics Specialist - InfoPeople Corporation
New York, NY 10004
About the Job
Seeking a highly technical Incident Response & Forensics Specialist. This position is a part of the IT Threat Intelligence group within the Cyber Security Operations Center and will be expected to provide direct support to the 24/7 Cyber Security Monitoring group as needed. The responsibilities include, but are not limited to, the following:
" Serving as a primary point of contact for CSOC & MSSP Cybersecurity Incident escalations " Interfaces directly with vendors & third parties for notified/observed compromises " Forensics on memory, disks, and logs " Malware analysis (dynamic & static) " Involvement in full incident response lifecycle " Processes evidence in accordance with Chain of Custody " Creates Incident reports to brief to executive management " Provide recommendations to prevent similar incidents " Assist the Threat Intelligence group in other functions including o Threat Intelligence / Threat Hunting o Threat Readiness o Cyber Content Engineering & Automation
Skills:
" Excellent communication skills
" Strong experience with digital forensic tools " Strong understanding and analysis of code such as Powershell, PERL, Python " Cybersecurity certifications (preferred) " Experience with OT & PCI technologies (preferred)
Minimum requirements:
" Bachelor's degree in Computer Science, Information Services, or IT Security related field Or- A satisfactory equivalent with at least 3 years of IT-Security experience.
" Minimum of 3 years of experience Tier 1 & 2 support for cyber security operation center.
" Minimum of 2 years' experience with performing incident response functions & investigations
" Serving as a primary point of contact for CSOC & MSSP Cybersecurity Incident escalations " Interfaces directly with vendors & third parties for notified/observed compromises " Forensics on memory, disks, and logs " Malware analysis (dynamic & static) " Involvement in full incident response lifecycle " Processes evidence in accordance with Chain of Custody " Creates Incident reports to brief to executive management " Provide recommendations to prevent similar incidents " Assist the Threat Intelligence group in other functions including o Threat Intelligence / Threat Hunting o Threat Readiness o Cyber Content Engineering & Automation
Skills:
" Excellent communication skills
" Strong experience with digital forensic tools " Strong understanding and analysis of code such as Powershell, PERL, Python " Cybersecurity certifications (preferred) " Experience with OT & PCI technologies (preferred)
Minimum requirements:
" Bachelor's degree in Computer Science, Information Services, or IT Security related field Or- A satisfactory equivalent with at least 3 years of IT-Security experience.
" Minimum of 3 years of experience Tier 1 & 2 support for cyber security operation center.
" Minimum of 2 years' experience with performing incident response functions & investigations
Source : InfoPeople Corporation