Incident Response Forensics Examiner

Posted on Feb 12, 2020 by Request Technology - Robyn Honquest

Northbrook, IL 60062
IT
Immediate Start
$110k - $130k Annual
Full-Time

Incident Response Forensics Examiner

Looking for a candidate with Digital Forensics Incident Response, incident handling threat intelligence, threat hunting, forensic analysis.

We are seeking an experienced Digital Forensics Incident Response (DFIR) candidate to perform intelligence-driven network defense supporting the Global Security Fusion Center (GSFC) capabilities (Incident Handling, Threat Intelligence, Threat Hunting and other stakeholders for GSFC). The role involves forensic analysis of online and offline ( dead-box ) hosts and network logs associated with information security incidents discovered by the System-level Monitoring and Threat Hunting capabilities.

  • Perform as an Information Security SME in the following areas:
    • Digital Forensics
    • Incident Response
    • Log analysis
    • Popular operating systems (Windows, Mac, Linux, Android, etc.)
    • Networking (Firewalls, IDS/IPS, packet capture)
    • Other security related disciplines
  • Continued collaboration and support with teammates, as well colleagues as it pertains to incident analysis

Job Qualifications

  • Bachelors and/or Masters Degree in Engineering, Computers Science, or related field.
  • 5+ years overall technical experience in either forensics, threat intelligence, incident response, security operations, or related technical information security field.
  • Deep understanding of common network and application stack protocols, including but not limited to TCP/IP, SMTP, DNS, TLS, XML, HTTP, etc.
  • Strong Incident Handling experience.
  • Strong and recent experience with malware analysis and reverse engineering.
  • Strong experience with popular OS architectures (eg Russinovich's Windows Internals, Linux Kernel architecture, etc.).
  • Experience with security operations tools, including but not limited to:
    • SIEM
    • Threat Intelligence Platforms
    • Link/relationship analysis (eg Maltego, IBM i2 Analyst Notebook)
    • Signature development/management (eg Snort rules, Yara rules)


Reference: 843381244

Set up alerts to get notified of new vacancies.

Similar Jobs

Incident Response/Forensics Examiner

Northbrook, IL

$110k - $130k Annual

Incident Response/Forensics Examiner

Northbrook, IL

$110k - $130k Annual

Incident Response Forensics Examiner

Northbrook, IL

$110k - $130k Annual

Incident Response Forensics Examiner

Northbrook, IL

$110k - $130k Annual