Remote Digital Forensics and Incident Response Specialist

Summary

Join our cybersecurity team as a skilled and motivated Digital Forensics and Incident Response (DFIR) Specialist to investigate and respond to cybersecurity incidents, conduct digital forensic investigations, and implement strategies to prevent future incidents.

Requirements

• At least 5 years of proven experience in digital forensics, incident response, or related roles
• Strong knowledge of digital forensics tools and techniques, including EnCase, FTK, X-Ways, or similar platforms
• Experience with incident response frameworks and methodologies, such as NIST, SANS, or similar
• Excellent analytical and problem-solving skills
• Strong understanding of network protocols, operating systems, and security technologies
• Excellent written and verbal communication skills
• Ability to work independently and manage multiple projects simultaneously

Responsibilities

• Lead and coordinate responses to cybersecurity incidents, including identification, containment, eradication, and recovery
• Analyze and investigate security breaches to determine the root cause and impact
• Conduct digital forensic investigations on a variety of digital devices, including computers, mobile devices, and network systems
• Collect, preserve, and analyze digital evidence in accordance with legal and regulatory requirements
• Monitor and analyze security alerts and threat intelligence to identify potential security incidents
• Conduct threat hunting activities to proactively identify and mitigate security threats
• Prepare detailed incident reports, including findings, recommendations, and remediation plans
• Maintain accurate and thorough documentation of all incident response activities and forensic investigations
• Collaborate with IT and security teams to implement security controls and best practices to prevent future incidents
• Conduct post-incident reviews to identify lessons learned and improve incident response processes
• Provide training and guidance to internal teams on incident response procedures and digital forensics best practices
• Develop and deliver security awareness programs to educate employees on cybersecurity threats and safe practices
• Work closely with cross-functional teams, including IT, legal, compliance, and external vendors, to support incident response and forensic investigations
• Communicate effectively with stakeholders to provide updates and ensure alignment with incident response plans

Preferred Qualifications

• Bachelor's or Masters degree in Computer Science, Information Security, or a related field
• Certification in digital forensics or incident response (e.g., GCFA, GCIH, CCE, EnCE)
• Experience working in a Security Operations Center (SOC) or similar environment
• Knowledge of scripting languages (e.g., Python, PowerShell) for automation and analysis

Benefits

Base pay: $130,000 - $180,000