Incident Response Senior Consultant

1 Month ago • All levels • $200,000 PA - $275,000 PA

Job Summary

Job Description

CyberArk is looking for a skilled Digital Forensics and Incident Response (DFIR) Consultant. This role involves technical leadership in managing complex security incidents, performing forensic analysis, threat hunting, and malware analysis. The consultant will assist customers in resolving security incidents efficiently, providing comprehensive response including investigation, containment, and crisis management. Responsibilities include investigating incidents using EDR systems, developing response initiatives, tracing malware, recognizing attacker Tactics, Techniques, and Procedures (TTPs) and Indicators of Compromise (IOCs), analyzing binary files, conducting forensic examinations on devices, analyzing live and collected memory, creating and refining detection and incident response playbooks, collaborating with teams for incident investigation and containment, producing high-quality reports for stakeholders, and establishing data sharing environments for suspicious events and machine timelines. The role also involves creating operational metrics, KPIs, and service level objectives to measure team competence.
Must have:
  • Investigate and analyze incidents with EDR systems.
  • Respond to ongoing security incidents in real-time.
  • Develop Incident Response initiatives.
  • Trace malware activity and patterns.
  • Recognize attacker TTPs and IOCs.
  • Analyze binary files to determine legitimacy.
  • Conduct forensic examinations on physical devices.
  • Perform analyses on live and collected memory.
  • Create and refine detection and incident response playbooks.
  • Collaborate with internal and customer teams.
  • Produce high-quality written reports and presentations.
Good to have:
  • Assist customers in rapidly and effectively resolving security incidents at scale.
  • Provide comprehensive incident response, including investigation, containment, and crisis management.
  • Establish a collaborative environment for sharing data.
  • Create operational metrics, KPIs, and service level objectives.
Perks:
  • Commissions or discretionary bonus

Job Details

CyberArk is seeking a highly skilled Digital Forensics and Incident Response (DFIR) Consultant to join our team. In this role you will be a   technical leader and navigate complex technical incidents, forensics analysis, threat hunting, and malware analysis. You will assist customers in rapidly and effectively resolving security incidents at scale, providing comprehensive incident response, including investigation, containment, and crisis management.

Responsibilities:

  • Investigate and analyze incidents with EDR systems to respond to ongoing security incidents in real-time.
  • Develop Incident Response initiatives that improve our ability to respond and remediate security incidents effectively.
  • Tracing malware activity and patterns and understanding how to remove malware non-destructively.
  • Recognize attacker Tools, Tactics, and Procedures (TTP) and Indicators of Compromise (IOC) and apply to future incident response events.
  • Analyze binary files to determine the legitimacy and extract IOCs when possible.
  • Conducting forensic examinations on physical devices and performing analyses on live and collected memory.
  • Create and refine detection and incident response playbooks.
  • Collaborate with internal and customer teams to investigate and contain incidents.
  • Produce high-quality written reports, presentations, and recommendations, to key stakeholders including customer leadership, and legal counsel.
  • Establishing a collaborative environment for sharing data on machine timelines and suspicious events.
  • Create operational metrics, key performance indicators (KPIs), and service level objectives to measure team competence.

#LI-KR1

Similar Jobs

Varonis  - SOC & IR Specialist

Varonis

United States (Hybrid)
2 Weeks ago
Saviynt - Principal Engineer, Quality Engineering

Saviynt

El Segundo, California, United States (Hybrid)
9 Months ago
Grammarly - Security Intelligence Engineer

Grammarly

San Francisco, California, United States (Hybrid)
3 Weeks ago
Survay Monkey - Information Security Engineer III

Survay Monkey

Amsterdam, North Holland, Netherlands (Hybrid)
3 Months ago
Morning Star - Senior Security Engineer

Morning Star

Chicago, Illinois, United States (Hybrid)
2 Weeks ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Two Circles - Cyber Security Operations Manager

Two Circles

London, England, United Kingdom (Hybrid)
2 Months ago
Banyan Software - Senior Dev Ops Engineer

Banyan Software

Chennai, Tamil Nadu, India (On-Site)
3 Weeks ago
GameJobs - Live Ops Analyst

GameJobs

Seoul, South Korea (On-Site)
1 Year ago
Abridge - Senior Platform Engineer

Abridge

San Francisco, California, United States (Hybrid)
2 Months ago
Clearwater Analytics - Information Security Analyst

Clearwater Analytics

Noida, Uttar Pradesh, India (On-Site)
3 Weeks ago
Match Group - Regional Risk Program Manager, Latin America

Match Group

Brazil (On-Site)
1 Month ago
Marvell - Insider Threat Program Lead

Marvell

Santa Clara, California, United States (On-Site)
3 Weeks ago
supercell - Senior Application Security Engineer

supercell

Helsinki, Uusimaa, Finland (On-Site)
1 Week ago
London stock Exchange - Site Reliability Engineer

London stock Exchange

Buffalo, New York, United States (Hybrid)
2 Months ago

Get notifed when new similar jobs are uploaded

Jobs in United States

Games For Love - Scholars Program Coordinator (No Compensation - Remote - Volunteer)

Games For Love

Lynnwood, Washington, United States (Remote)
12 Months ago
Square - Process Analyst

Square

Lisle, Illinois, United States (Hybrid)
1 Week ago
Visa - Director, Learning Experience

Visa

Atlanta, Georgia, United States (Hybrid)
2 Weeks ago
Thumbtack - Manager, Automation & Process

Thumbtack

United States (Remote)
2 Weeks ago
Next Level Business Services - Software Developer (Full Time)

Next Level Business Services

Redmond, Washington, United States (On-Site)
9 Months ago
Insomniac - Senior XDev Animator

Insomniac

United States (Remote)
1 Month ago
Saronic Technologies - Composites Technician

Saronic Technologies

Austin, Texas, United States (On-Site)
1 Week ago
Dream world  - Unreal Engine Game Developer (Senior+)

Dream world

Redwood City, California, United States (Remote)
3 Months ago
Apple - Cloud Infrastructure Engineer - Systems

Apple

Seattle, Washington, United States (On-Site)
2 Months ago
Leapwork - Enterprise Account Executive

Leapwork

Boston, Massachusetts, United States (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

CyberArk's mission is to secure the world against cyber threats so together we can move fearlessly forward. CyberArk is a global leader in identity security, helping organizations worldwide protect their most valuable assets and critical infrastructure. They offer a comprehensive platform that addresses the evolving challenges of identity-related risks, providing solutions for workforce access, privileged access, customer access, and machine identity security. CyberArk is committed to innovation and providing cutting-edge security solutions that empower their customers to be more secure and efficient.
View All Jobs

Get notified when new jobs are added by CyberArk

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug