Nihon Cyber Defence (NCD) is a global cyber security company protecting and supporting critical national infrastructure, governments, large organizations, and small, medium enterprises (SMEs) from the increasing impact of debilitating cyber-attacks, which continue to increase in frequency and complexity.
25 червня 2024 бронювання

Digital Forensics Incident Response (DFIR) (вакансія неактивна)

Київ, Краків (Польща), віддалено

About the job

Nihon Cyber Defence (NCD) are a global cyber security company, headquartered in Tokyo, Japan with a UK and European base in Belfast, Northern Ireland, Kyiv, Ukraine, and Krakow, Poland. The NCD global incident management team deliver cyber incident management services globally.

We are seeking an experienced Digital Forensics and Incident Response (DFIR) Consultant who will be responsible for delivering cyber security consultancy services with a focus on technical incident response. The successful applicant will be part of a global team delivering the holistic incident management service and will have responsibility for delivering technical incident response services alongside a team of cyber security consultants and contractors, reporting to the Team Leads, Head of Incident Management UK and Global Management Team as required. The role is office based with hybrid opportunities. Travel, both national and international, may be required on an infrequent basis dependant on operational requirements.

As a DFIR Consultant, you’ll be a n expert lead in the response to cyber attacks, detected or escalated incidents and enable effective responses in order to minimise and contain the impacts whilst enabling an effective recovery. Your mission: to investigate, detect and contain attacks and intrusions whilst providing effective remediation activities and solutions. This will include:

  • Strong understanding of cybersecurity principles and best practices.
  • Proficiency in risk assessment, vulnerability assessment, and principles of penetration testing.
  • Experience with network security, encryption, and firewall management.
  • Strong communication skills for presenting findings and recommendations to clients.
  • Familiarity with industry regulations and compliance standards.
  • Experience with security assessment tools and techniques.
  • Proficient in analysing security incidents, identifying threats, and mitigating risks.
  • Strong understanding of intrusion detection and prevention systems.
  • Experience in forensic analysis and evidence collection.
  • Knowledge of malware analysis and reverse engineering.
  • Familiarity with security incident response frameworks and protocols.
  • Excellent problem-solving skills under pressure.

Qualifications and Experience sought:

Industry recognised certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Incident Handler (GCIH), Certified Ethical Hacker (CEH), and EC-Council Incident Responder among others... are an advantage but evidenced experience is essential.

Responsibilities

The ideal candidate will have experience and capability in the following areas:

  • Advanced knowledge of network architecture and cloud security.
  • Expertise in technical incident response planning and execution.
  • Ability to provide strategic guidance to clients for improving their security posture.
  • Experience in evaluating emerging technologies and their potential security risks.
  • Strong project management skills for overseeing security initiatives.
  • Proficient knowledge of MITRE ATT&CK PPTs and various attack types (e.g. MITRE CAPAC)
  • Advanced knowledge of incident response automation and orchestration.
  • Experience in coordinating incident response across complex environments.
  • Expertise in analysing advanced persistent threats (APTs) and zero-day vulnerabilities.
  • Understanding of legal and regulatory aspects of cyber incident response.
  • Ability to develop and maintain incident response plans & playbooks

Career Path and Growth Opportunities

As a DFIR consultant, you’ll have the chance to continuously learn and evolve. You’ll collaborate with professionals, contribute to our service development, and make a tangible impact on our clients’ resilience. Opportunities for certifications (such as CSIM, GIAC, OSCP, or CISSP) and career advancement await the right candidate.

Link to the global job post: www.linkedin.com/jobs/view/3955483258

Note: This position requires ethical conduct, adherence to legal boundaries, and a commitment to protecting our clients and their data.

Applications are welcome from all backgrounds and diversities.

Successful applicants will be required to undergo background and security checks prior to appointment.

Salary and benefits are negotiable for the right candidate, but please contact us, confidentially, for further details and information.