Requirements
- Experience in conducting or managing incident response investigations, including targeted threats such as Advanced Persistent Threats, Organized Crime, and Hacktivists.
- Background in using various forensic analysis tools to determine the extent and scope of compromise in incident response investigations.
- Strong knowledge of network protocols and analysis tools like Bro/Zeek or Suricata, with the ability to analyze associated network logs.
- Ability to understand the capabilities of static and dynamic malware analysis through reverse engineering.
- Strong understanding of targeted attacks and the ability to create customized tactical and strategic remediation plans for compromised organizations.
- Strong understanding of secure network architecture and background in performing network operations.
- Knowledge in incident response methodologies for cloud environments, including AWS, Azure, or GCP.
- Strong ability to communicate executive and detailed findings to clients, and effectively communicate tasks, guidance, and methodology with internal teams.
- Experience in leading teams in a matrixed consulting environment.
- Capable of completing technical tasks independently.
- Desire to grow and expand both technical and soft skills.
- Strong project management skills.
- Contributing thought leader within the incident response industry.
- Ability to foster a positive work environment and attitude.
Nice to Have
- GIAC Certified Incident Handler (GCIH)
- GIAC Certified Forensic Analyst (GCFA) or GCFE
- Certified Information Systems Security Professional (CISSP)
- Certified Ethical Hacker (CEH)
- OSCP / OSCE (Offensive Security certifications for more offensive/technical IR work)
- Experience in cloud incident response (AWS, Azure, GCP)
Compensation
Not specified
Work Arrangement
Remote
Team
Matrixed consulting environment
Title
Principal Incident Response Consultant (インシデントレスポンス・プリンシパルコンサルタント)
Not specified
