|Company||Stroz Friedberg, an Aon company|
|Preferred GIAC Certifications||GCFA, GCFE, GREM, GNFA, GCTI, GASF|
Senior Consultant, Incident Response
Support and provide mentorship within the DFIR team at the direction of the units’ Managing Directors and Executive Managing Directors. Responsible for supporting the development of IR tools, development of IR and cyber security protocols, information and intelligence sharing across cyber response practice as well as training the forensics staff on IR-related matters. Willingness to represent SF in targeted industry events, seminars to enhance the firm’s market position as a provider of premium services within the IR space.
-Investigate breaches to include host based analysis, network and log analysis and malware reverse engineering.
-Conduct Threat Hunting activities as required for SF clients.
-Participates in forensic projects as required, including collection, preservation of electronic evidence.
-Preserve and analyse data from electronic data sources, including laptop and desktop computers, servers, and mobile devices.
-Research, develop, and recommend hardware and software needed for Incident Response and develop policies and procedures to respond to data breaches.
Team Leadership and Development
Your role as a member of the DFIR will consistently involve collaboration with the unit’s senior leadership as well as other forensic personnel to facilitate an effective Incident Response programme. You will also be expected to prepare, write, and present reports and briefings and contribute to reports generated by the other DFIR team members.
-Proficiency with forensic techniques and the most commonly used DFIR toolsets, such as dtSearch, EnCase, X-Ways, FTK Suite,SIFT, REMnux, IDAPro etc.
-Ability to conduct malware analysis in support of incident response engagements.
-Knowledge of scripting/programming languages to assist in automating some IR processes.
-Knowledge of memory analysis techniques including the use of volatility, rekall, and other tools.
-Prior experience/knowledge of penetration testing/hacking techniques such as SQLi, XSS, RFI/LFI, Directory traversal, and tools such as Nessus, Nmap, Kali Linux, Burp Suite, SQLMap, etc.
-Well-developed analytic, qualitative, and quantitative reasoning skills and demonstrated creative problem solving abilities.
-Strong work ethic and motivation with a demonstrated history of ability to lead a team and develop talent.
-Strong verbal and written communication skills.
-Ability to anticipate and respond to changing priorities, and operate effectively in a dynamic demand-based environment, requiring extreme flexibility and responsiveness to client matters and needs.
-Must be able to work collaboratively across team and physical locations.
-Significant travel, evening and weekend hours should be anticipated.
Responsible for working in accordance with the Aon UK Limited Risk Management Framework, and compliance with the Aon UK Limited policies, including participation in the management of risks (including completion of mandatory training) that may adversely affect the business, interests or reputation of any Group Company.
Bachelor’s Degree in Computer Science, Information Security, Engineering, Digital Forensics or other relevant subjects. Relevant industry certifications relating to Incident Response i.e. Crest, Sans, etc. would be seen as a plus.
Salary and Benefits
This role offers a competitive salary and bonus, plus a comprehensive benefits package and 25 days holiday. Through our flexible benefits, you will also have the opportunity to choose additional benefits, including healthcare, childcare vouchers and additional holiday.