Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Jobs InfoSec Jobs

Participate: Learn more about our honeypot network

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

This listing has expired and therefore is not publicly viewable.

DFIR Consultant
Company Soteria
Location Charleston, SC
Preferred GIAC Certifications GCIH, GCFA, GCFE, GASF
Travel 25%
Salary Not provided
Contact Name Brandon Poole
Contact Email bpoole/at/
Expires 2020-01-22

Job Description

Headquartered in beautiful Charleston, South Carolina, Soteria is a rapidly growing cybersecurity firm that provides tailored consulting, advisory, and managed detection and response services.

At Soteria, our incident response professionals work directly with our clients to recover from incidents as quickly and effectively as possible. We strive to be the steady hand that guides our clients when they are having their worst day. Once the incident is over, we continue our partnership to assist our customers in implementing the changes needed to prevent repeat incidents in the future.

This position is open to remote workers.

As a Digital Forensics and Incident Response Consultant, your responsibilities include:
Assist clients by performing incident response functions including triage, analysis, forensics, and recovery efforts.
Triage, collect, and analyze forensically valuable data from the available sources to determine the scope and severity of security incidents.
Manage incident response engagements to guide clients through the response process and ensure that the engagement is tailored to meet their specific response needs
Documenting and presenting findings and recommendations to clients in a professional manner.
Maintaining relationships with clients post-engagement in order to assist and advise on longer-term remediation efforts.
Maintaining competence in security trends, technologies, and practices through self-study and attendance of industry events.
Working with Soteria’s managed detection and response team to improve detection capabilities
Training and mentoring consultants and analysts in order to build the company's overall capacity and capability.

2+ years of digital forensics, incident response, security operations, or other relevant experience
Strong leadership and crisis management skills
Experience leading
Strong, working knowledge in the following areas:
Forensically valuable artifacts available on Windows, Linux, Unix, and MacOS operating systems
Networking concepts, protocols, and architecture
Disk forensics tools such as EnCase, FTK, etc.
SIEM tools as it relates to searching and extracting relevant data for incident investigations
Programming/Scripting experience as needed to facilitate investigations and remediation efforts
Strong written and verbal communication skills.
Must be able to communicate details of findings to both technical and non-technical clients
Must be able to deliver detailed written reports at the conclusion of every client engagement
Must have ability to travel as necessary for role including travel on short notice

Medical, Dental, and Vision covered 100% for Employee and %50 for family members.
Flexible work hours
Paid time off of 24 days with an additional 8 paid holidays
Furthering education / professional development opportunities

Candidates must be legally authorized to work full time within the United States and able to pass a background check. Some candidates may require more extensive background checks based on project.