DFIR Analyst, India (Remote) at SecurityScorecard

Sorry, this job was removed at 6:48 p.m. (CST) on Tuesday, May 10, 2022
Find out who’s hiring remotely Nationwide
See all Remote jobs Nationwide
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

About SecurityScorecard:

Funded by world-class investors including Silver Lake Waterman, Moody’s, Sequoia Capital, GV, Riverwood Capital, and others with over $290 million in funding, SecurityScorecard is the global leader in cybersecurity ratings and the only service with over 2M+ companies continuously rated. Founded in 2013 by security and risk experts Dr. Aleksandr Yampolskiy and Sam Kassoumeh, SecurityScorecard’s patented rating technology is used by over 16,000 organizations for enterprise risk management, third-party risk management, board reporting, due diligence, and cyber insurance underwriting. This is done by measuring your and your vendors' cyber-health by assigning a security rating of "A" through "F" based on outside-in, non-intrusive data. SecurityScorecard continues to make the world a safer place by transforming the way companies understand, improve and communicate cybersecurity risk to their boards, employees, and vendors. 

SecurityScorecard is headquartered in NYC with over 450+ employees globally. Our culture has helped us be recognized by Inc Magazine as a "Best Workplace," "Best Places to Work in NYC" by Crain's NY, and one of the 10 hottest SaaS startups in NY for two years in a row. 

Why join SecurityScorecard’s Professional Services Team?

The SecurityScorecard Professional Services team has a mission to advise customers on how to make their organizations safer. We provide specific direction with our cyber resiliency services, driven by our superior cybersecurity data, best practices and front-line lessons learned. We provide value by showing you where you are vulnerable, how to fix it and what is important to do first. Our services teams are cybersecurity thought leaders. We are a proactive Professional Services team that is customer centric, uses a team approach and represents the voice of the customer every day.

The team recently expanded with the acquisition of LIFARS, a global leader in Incident Response, Digital Forensics, Penetration Testing and Ransomware Mitigation, to form a DFIR practice. 

Whom are we looking for? 

The SecurityScorecard DFIR practice is looking for a Digital Forensic Examiner and Incident Responder to join our global Cybersecurity and Digital Forensics & Incident Response department. We need a highly driven, motivated, creative, reliable, diligent, detail-oriented, and clever individual to join our team. We are in a competitive environment, and we need to “hack it” with innovative approaches. The desired candidate should have experience with cybersecurity, hands-on technical experience, theoretical understanding of forensic science, and be able to roll up their sleeves and work independently as needed. 


About the role: 

The primary responsibility of this role will be to provide software, hardware, and wireless, including mobile forensic examination support to the client based on submitted requirements for functionality and use of tools that have been developed. Leverage technical comprehension of relationships, dependencies, and requirements of hardware and software components, review and interpret forensics artifacts. Interpret submitted documentation, including user and functional requirements, and analyze the development of forensic examination reports according to a template to be provided to the client as a final deliverable. 



  • Conduct digital forensic investigations and remediation, including after breach recovery and technical assessments as a part of the team or team leader  
  • Conduct reactive incident response analysis including but not limited to: host-based analysis functions through investigating Windows, Linux, and Mac OS X systems to identify Initial Vector of compromise, and Indicators of Compromise (IOCs). 
  • Forensically examine logs from remote solutions, routers, switches, load balancers, firewalls, web, databases, and other log sources to identify evidence and artifacts of potentially malicious and compromised activity. 
  • Manage cybersecurity and digital forensics engagements for clients- team leader and responsible for lab organization, including policy and physical location for some areas of digital forensics work 
  • Work with PM team on-boarded clients with IR retainers from technical perspective  
  • On demand as needed to implement internal security, policies and procedures for IT security areas under the direction of CISO  
  • Work on various projects for clients – implementations, integrations, consulting and advisory  
  • Prepare technical and awareness training for internal staff and clients  
  • Independently lead computer incident investigations, determining the cause of the security incident and preserving evidence for potential legal action  
  • Perform detailed forensic analysis on workstations, servers, phones, or any other digital media interface with business function owners, legal, human resources, technical personnel and others  
  • Make recommendations on corrective action for incidents  
  • Produce security incident and investigation reports/briefings  
  • Willing to be called upon as an expert witness at criminal/civil trials  
  • Analyze infrastructure security incidents to determine if incident qualifies as a legitimate security breach  
  • Teach other team members advanced techniques in forensic investigations  
  • Secure evidence and lab equipment management  
  • Examination and reviewing of forensic evidence and cases  
  • Creation/modification of forensic reports based on examination results  
  • Virtual machine and workstation management for Cyber Security and forensic purposes  



  • Deep technical knowledge of Windows and Linux system (workstations and servers)  
  • Deep technical knowledge of forensics analysis of Windows and Linux systems (workstations and servers)  
  • Minimum of 2 years of cyber/digital forensic investigative experience  
  • Minimum of 2 years of incident response experience  
  • Minimum of 2 years of experience in Windows desktop, server OS, Linux  
  • 1 professional certification such as: GCFA, CISSP, EnCE, CISA, GCFE, GCIH, CEH required  
  • Technology skills with cyber security/forensic software (AccessData, Encase, etc.)  
  • Microsoft Office (PowerPoint, Excel, Word, Outlook) experience preferred  

More Information on SecurityScorecard
SecurityScorecard operates in the Cybersecurity industry. The company is located in New York, NY. SecurityScorecard was founded in 2013. It has 350 total employees. It offers perks and benefits such as Flexible Spending Account (FSA), Disability Insurance, Dental Benefits, Vision Benefits, Health Insurance Benefits and Life Insurance. To see all 67 open jobs at SecurityScorecard, click here.
Read Full Job Description
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Similar Jobs

Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView SecurityScorecard's full profileFind similar jobs