Consultant, Compromise Assessment (Remote)
Remote U.S. role within a reasonable commuting distance to one of the following offices: Sunnyvale, CA; Irvine, CA; El Segundo, CA; Austin, TX; Seattle, WA; Kirkland, WA; Columbia, MD; Boston, MA; Arlington, VA; St. Louis, MO; Minneapolis, MN.
Am I a Consultant Candidate?
Do you find yourself interested in and keeping up with the latest vulnerabilities and breaches?
Are you self-motivated and looking for an opportunity to rapidly accelerate your skills?
Do you crave new and innovative work that actually matters to your customer?
Do you have an Incident Response or Threat Hunting background that you’re not fully utilizing?
Are you capable of leading teams and interacting with customers?
Do you love working around like-minded, smart people who you can learn from and mentor on a daily basis?
Typical Responsibilities:
Perform host and/or network-based forensics across Windows, Mac, and Linux platforms.
Lead compromise assessments including analysis, project management and client interactions.
Assist with analysis on incident response engagements.
Produce high-quality written and verbal reports, presentations, recommendations, and findings to customer management.
What You'll Need
Successful candidates will have experience in one or more of the following areas:
Linux or MacOS forensics analysis or threat hunting.
Incident Response: experience conducting incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hactivists.
Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise.
Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation recommendations for organizations.
Cloud Development: knowledge in any of the following areas: AWS, Azure, GCP, Splunk or Elasticsearch.
Programming/Scripting: experience coding in Python, Powershell, Bash or Go.
Additionally, all candidates must possess the following qualifications:
Capable of completing technical tasks with some supervision.
Desire to grow and expand both technical and soft skills.
Confident project management skills.
Ability to foster a positive work environment and attitude.
Limited travel
#LI-AC1
#LI-Remote