Login | Register

Senior DFIR Lead & Intermediate DFIR Analyst to be focal point for end client on incident response

Job Type: Permanent
Positions to fill: 2
Start Date: Feb 06, 2023
Job End Date: Feb 06, 2023
Pay Rate: Salary: Negotiable
Job ID: 126313
Location: Calgary, Edmonton, Halifax, London, Montreal, Ottawa, Regina, Toronto, Vancouver, Victoria, Winnipeg
Apply
S.i. System's client is looking for a Senior DFIR Lead & Intermediate DFIR Analyst to be focal point for end client on incident response. This team runs on a 24/7/365 basis for their clients. You will be the focal incident response point for all within the organization (Incident Response/Post Breach Remediation/RMS Advisory/MSSP Advisory). This includes being able to provide initial analysis and identification of IOC’s, escalation to the appropriate business units and post-incident activities.

DFIR LEAD MUST HAVES:
  • 6+ years of experience in Incident Response
  • Experience in the deployment and management of EDR Technology
  • Experience with Security Technologies and NIST Framework
  • Experience developing, documenting and implementing incident response methods, process
  • Experience performing live endpoint investigations
  • Experience in forensic investigations both on-premise and cloud
  • Experience in mentoring developing and delivering inhouse training
  • Strong knowledge of DFIR Tools
  • Strong knowledge of Virtualization Technologies, Operating Systems, Firewalls, VPN’s, SIEM, Enterprise Gateway Technologies, Networking Devices, Security Technologies, etc. 
  • Knowledge on how to conduct a Penetration Test
NICE TO HAVES:
  • Certifications – GCFE, GCIH.

DFIR ANALYST MUST HAVES:
  • 3+ years of experience in DFIR 
  • Experience in the deployment and management of EDR Technology
  • Experience with Security Technologies and NIST Framework
  • Experience developing, documenting and implementing incident response methods, process
  • Experience performing live endpoint investigations
  • Experience in forensic investigations both on-premise and cloud
  • Strong knowledge of DFIR Tools
  • Strong knowledge of Virtualization Technologies, Operating Systems, Firewalls, VPN’s, SIEM,
  • Enterprise Gateway Technologies, Networking Devices, Security Technologies, etc.
NICE TO HAVES:
  • Certifications, GCIH, GCFE.