[Hiring] Senior Digital Forensic Investigator @eSentire

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description The Senior Digital Forensic Investigator serves as a tactical arm of eSentire’s Incident Response team. Main function of this role is to drive deep expertise and experience in incident response, and digital forensics engagements.

• Handle the most volatile and complex casework while ensuring optimum quality of service and responsiveness.
• Casework spans from financially motivated data breaches to state-affiliated espionage and ideology-driven attacks.
• Operate in close coordination with eSentire’s SOC and Customer Success Management teams.
• Drive fast mobilization, source identification, containment, and quantification of informational losses in response to cyber attacks.
• Be available outside regularly scheduled work hours, including weekends and holidays.
• Encourage team members to catch up on personal business when not busy.

Responsibilities

• Drive deep domain expertise in cyber incident response and digital forensics engagements.
• Serve as case lead in the most demanding and volatile cyber investigations.
• Be a tactical force multiplier for all open and active investigations.
• Overlay with Customer Service Management and SOC teams to optimize quality of service.
• Own and manage all aspects of assigned incident response engagements.
• Be responsive to the customer’s voice and feedback.
• Strive for attention to detail and excellence in service delivery.
• Assist in scoping assignment activities as needed.
• Continually research and develop new methods and approaches to improve service delivery.
• Provide support and mentoring to junior level staff.
• Work rotating shifts and be available on an on-call basis as required.
• Be prepared to work for extended periods outside of regularly scheduled hours, including weekends and holidays.
• Be prepared to travel for short periods and work onsite at client locations throughout the United States and Canada, as required.

Requirements

• Four-year degree in a relevant discipline and eight to ten years of DFIR experience.
• Experience acting in an IR consultant capacity, particularly in the investigation and remediation of polymorphic trojans and modern ransomware variants.
• Conducting cloud-based investigations in AWS, GCP, Azure, and SaaS environments.
• Mastery of threat hunting using forensics at scale tooling and conducting web-based intrusion investigations.
• Extensive experience in one or more mainstream forensics tools such as EnCase, FTK, Axiom, X-Ways, etc.
• In lieu of education requirements, a military or law enforcement background with ten or more years of relevant work experience is acceptable.
• Demonstrable expertise in Digital Forensics Incident Response Investigations.
• Strong working knowledge of information security fundamentals.
• Working knowledge and hands-on experience with cybersecurity tools and technologies including:
• Endpoint Detection and Response (EDR): CrowdStrike, SentinelOne, Jobnity Defender for Endpoint (MDE)
• Security Information and Event Management (SIEM): Splunk, Sumo Logic, IBM QRadar, Remotara Sentinel
• Firewall & VPN Logging Analysis: FortiGate, SonicWall, Meraki, WAF
• Mass Forensic Triage Tools: Velociraptor, KAPE, Hayabusa
• Active Directory Analysis Tools
• Security consulting and/or case investigation background preferred.
• Excellent written and verbal communication, listening and client management skills.
• Ability to articulate complex IT technical information to customers in a non-technical fashion.
• Self-motivated, strong analytical skills and detail-oriented.
• Demonstrated presentation skills.

Benefits

• Comprehensive health benefits.
• Flexible vacation plan.
• Participation in the company-wide equity program. Accommodation If you have any accessibility requirements during the recruitment process, please reach out to our HR team at [email protected] and any accommodation needs will be addressed upon request. Your talents and unique perspectives are valued, and we look forward to the opportunity to work together to build a more inclusive future. Apply tot his job Apply tot his job Apply tot his job

Apply tot his job Apply To this Job