Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Jobs - DFIR Analyst UK South Africa GCIH, GCFA, GCFE, GREM InfoSec Jobs


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
DFIR Analyst
Company Foregenix, Ltd.
Location UK & South Africa
Preferred GIAC Certifications GCIH, GCFA, GCFE, GREM
Travel 15%
Salary Competitive
URL https://www.foregenix.com/work-with-us-forensic-analyst-job-uk
Contact Name Anonymous
Contact Email sterling.thomas/at/gmail.com
Expires 2019-01-22

Job Description

Foregenix is a leading Global Cyber Security company with offices around the globe. We are seeking junior digital forensic investigators or incident response analysts with a minimum of 12 months post graduate commercial experience, to join each of our UK and South African based teams. You will be responsible for assisting with a wide range of digital investigations, with a primary focus on network data breaches. Your duties will also include maintaining custody of evidence, assisting with investigations onsite and within our forensic laboratory, researching security vulnerabilities, and provide support to client’s subject to an ongoing investigation.
Our ideal candidate will have BSc or MSc in Forensic Computing or Information Security. As a Digital Forensic and Incident Response Analyst, you should perform well under pressure keeping to deadlines, with an eye for detail and a passion for quality. We provide on-the-job training so an aptitude and willingness to learn is a must. Foregenix will put you on a career path that will build on your knowledge and experience with the aim that you will become a senior investigator within 5 years.

Responsibilities and Duties
• Assist with investigations, working under limited supervision.
• Provide incident response capabilities to clients within the UK and Europe.
• Learn to identify weaknesses and deficiencies within lightweight security audits (PCI DSS) and vulnerability assessments of digital environments.
• Provide security advice and guidance to clients who have suffered a data breach.
• Identify new IOCs and assist in the maintenance of our intelligence database.
• Provide documentation on new and emerging attack trends in the way of blogs and white papers.
• Maintain high level of evidence handle, ensuring ACPO Digital Forensic guidelines are followed and the chain of custody is maintained.
• Stay up-to-date with all relevant programs and current news on attack trends.

As part of this role, candidates may be expected to travel internationally as well as domestically although the travel frequency is not high

Qualifications and Skills

Essential competencies:
• Proven knowledge of Digital Forensics and Incident Response practices, min 12 months in a commercial setting
• Fundamental knowledge of both live and offline acquisition techniques
• Fundamental knowledge of memory analysis
• Fundamental knowledge of common operating systems; Microsoft, Linux, and Apple Mac
• Excellent writing skills in English
• Attention to detail
• Good organizational and time-management skills
• Ability to convey technical information to non-technical people, both in print and verbally

Desirable:
• Scripting or programming experience ·
• Knowledge of networking and server applications ·
• Experience of malware and reverse engineering ·
• Experience of vulnerability scanning or penetration testing ·
• Experience of network traffic analysis ·
• Knowledge of ACPO Digital Forensic guidelines

Benefits
20 days annual holiday plus Bank Holidays
Pension Scheme
Private Health Insurance
Please apply sending a copy of your CV in pdf format - all other formats will not be accepted
Job Type: Full-time
Salary: Competitive