Senior Digital Forensics Incident Response Consultant
Job Summary
Job Description
As a Senior Digital Forensics Incident Response Consultant at Mandiant, you'll provide industry-leading incident response services, including investigation, containment, remediation, and crisis management. You will lead investigations, analyze cloud, endpoint, and network data, identify attacker TTPs and IOCs, and develop tools and methodologies to enhance incident investigation processes. You'll collaborate with internal and customer teams, present findings to technical and executive audiences, and contribute to complex, high-profile incidents. The role requires experience in network and log forensic analysis, malware triage, and disk/memory forensics across Windows, macOS, or Linux environments.
Must have:
- 5+ years experience in network and log forensics
- Malware triage and disk/memory forensics
- Incident response investigation leadership
- Enterprise security architecture and controls knowledge
- Report and presentation development for technical and executive audiences
Good to have:
- Cloud incident response or forensics experience
- Ability to travel up to 20%
Perks:
- Bonus
- Equity
- Benefits
6 skills required
Job Details
Minimum qualifications:
- Bachelor's degree in Computer Science, Information Systems, Cyber-Security, a related technical field, or equivalent practical experience.
- 5 years of experience with network and log forensic analysis, malware triage analysis, and disk and memory forensics in one or more of the following: Windows, macOS, or Linux.
- Experience leading incident response investigations, analysis, or containment actions.
- Experience with enterprise security architecture and security controls.
Preferred qualifications:
- Experience with Cloud incident response or forensics.
- Ability to travel up to 20% as needed.
- Excellent time management skills to balance time among multiple tasks and mentor consultants.
About the job
As an Incident Response Consultant, you will provide industry-leading incident response, assessment, transformation, managed detection and response, and training services with in-depth tactical support. You will help organizations effectively detect and respond to threats and reduce the overall impact of business risk before, during, and after an incident. You will be able to resolve security incidents quickly, effectively and at scale with complete incident response including investigation, containment, remediation, and crisis management. In this role, you will work on engagements including assisting clients in navigating technically complex and high-profile incidents, performing forensic analysis, threat hunting, and malware triage.Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services. Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world. Our unique combination of renowned frontline experience responding to some of the most complex breaches, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that Mandiant knows more about today's advanced threats than anyone.The US base salary range for this full-time position is $132,000-$194,000 + bonus + equity + benefits. Our salary ranges are determined by role, level, and location. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Your recruiter can share more about the specific salary range for your preferred location during the hiring process.
Please note that the compensation details listed in US role postings reflect the base salary only, and do not include bonus, equity, or benefits. Learn more about .
Responsibilities
- Collaborate with internal and customer teams to investigate and contain incidents.
- Lead small and contribute to complex client-facing investigations and examine cloud, endpoint, and network-based sources of evidence.
- Recognize and codify attacker Tools, Tactics, and Procedures (TTPs) and Indicators of Compromise (IOCs). Build scripts, tools, or methodologies to enhance Mandiant’s incident investigation processes that can be applied to current and future investigations.
- Develop and present comprehensive and accurate reports and presentations for both technical and executive audiences.
Similar Jobs
The Walt Disney Company
Île-de-France, France (On-Site)
• 5 Months ago
PwC
Cairo, Cairo Governorate, Egypt (On-Site)
• 7 Months ago
Get notifed when new similar jobs are uploaded
Similar Skill Jobs
bytedance
San Jose, California, United States (On-Site)
• 2 Months ago
Crowd Strick
Tel Aviv-Yafo, Tel Aviv District, Israel (On-Site)
• 1 Week ago
Get notifed when new similar jobs are uploaded
Jobs in Los Angeles, California, United States
NBC Universal
San Antonio, Texas, United States (Hybrid)
• 3 Weeks ago
Plug power
Denver, Colorado, United States (On-Site)
• 1 Month ago
Dynamis Inc
Albuquerque, New Mexico, United States (On-Site)
• 1 Week ago
Greenworks Sunrise Global Marketing
Grand Rapids, Michigan, United States (On-Site)
• 2 Weeks ago
Get notifed when new similar jobs are uploaded
Cyber Security Jobs
Canva
Melbourne, Victoria, Australia (Remote)
• 2 Months ago
zeta
Bengaluru, Karnataka, India (On-Site)
• 7 Months ago
PwC
Mumbai, Maharashtra, India (On-Site)
• 8 Months ago
PwC
Mumbai, Maharashtra, India (On-Site)
• 8 Months ago
PwC
Makati, Metro Manila, Philippines (On-Site)
• 8 Months ago
PwC
Mumbai, Maharashtra, India (On-Site)
• 7 Months ago
Get notifed when new similar jobs are uploaded
