This job board retrieves part of its jobs from: Toronto Jobs | Emplois Montréal | IT Jobs Canada

Find jobs across the United States!

To post a job, login or create an account |  Post a Job

  Jobs JKT  

Bringing the best, highest paying job offers near you

previous arrow
next arrow
Slider

Incident Response Consultant (Remote – Northeast Region)

Mandiant

This is a Full-time position in Washington, DC posted January 22, 2022.

Company Description
Since 2004, Mandiant has been a trusted partner to security-conscious organizations.

Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions.

Mandiant’s approach helps organizations develop more effective and efficient cyber security programs and instills?confidence in their readiness to defend against and respond to cyber threats.
Job Description
The Mandiant Incident Response team is seeking Consultants with deep understanding of both existing and emerging threat actors, as well as experience identifying rapidly changing tools, tactics and procedures of attackers.

You must be able to see the big picture, understanding evolving attacker behavior and motivations, participate and manage large client-facing projects, and help to train/mentor other security consultants.

The successful candidate will possess sound business acumen, strong consulting skills, current technical skills and be adept in leading multiple projects under tight deadlines.

If you are interested in investigating computer crimes and breaches that make the headlines – and many more that don’t, then this opportunity is for you.
What You Will Do:

Conduct host forensics, network forensics, log analysis, and malware triage in support of incident response investigations
Utilize Mandiant technology to conduct large-scale investigations and examine endpoint and network-based sources of evidence
Recognize and codify attacker tools, tactics, and procedures in indicators of compromise (IOCs) that can be applied to current and future investigations
Build scripts, tools, or methodologies to enhance Mandiant’s incident investigation processes
Develop and present comprehensive and accurate reports, trainings and presentations for both technical and executive audiences
Work with clients security and IT operations teams to implement remediation plans in response to incidents

Qualifications
Minimum Requirements:
3+ years of comparable experience in incident response, security operations, or similar
Experience with at least three of the following:
Windows disk and memory forensics
Network Security Monitoring (NSM), network traffic analysis, and log analysis
Unix or Linux disk and memory forensics
Static and dynamic malware analysis
Experience and understanding of enterprise security controls in Active Directory/Windows environments
Experience building scripts, tools, or methodologies to enhance investigation processes
Must be able to work in the US without sponsorship
Ability to travel up to 30%, when travel resumes

Desired Qualifications:

Effectively communicating investigative findings and strategies to technical staff, executive leadership, legal counsel, and internal and external clients
Effectively develop documentation and explain technical details in a concise, understandable manner
Strong time management skills to balance time among multiple tasks

Additional Information
At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence.

All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.
This is a regionally-based role for individuals located within the Northeast region of the United States.

Please add your adsense or publicity code here (inc/structure/adsfooter.php)