Digital Forensics & Incident Response Analyst Mid-Level jobs in United States
cer-icon
Apply on Employer Site
company-logo

Cayuse Holdings ยท 3 weeks ago

Digital Forensics & Incident Response Analyst Mid-Level

positionUS-AL-Huntsville
timeFull-time
remoteOnsite
seniorityMid Level
money$90K/yr - $130K/yr
date3+ years exp

Cayuse Holdings is a company focused on cybersecurity, and they are seeking a Digital Forensics and Incident Response Mid-Level specialist. This role involves safeguarding sensitive networks and information systems by leveraging specialized training and experience in Digital Forensics and Incident Response, among other responsibilities.

Finance
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Provide real-time analysis of escalated security events to support response efforts
Analyze data from endpoints, EDR systems, firewalls, and servers to identify, contain, and remediate suspicious activity
Analyze malicious scripts and code to mitigate potential threats
Engage in Threat Hunting operations to proactively identify and mitigate threats
Conduct predictive or reactive analyses on security measures to support cyber security initiatives
Create system images or capture network settings from information technology environments to preserve as evidence
Forensically duplicate digital evidence to use for data recovery and analysis procedures
Perform web service network traffic analysis or waveform analysis to detect anomalies, such as unusual events or trends
Contribute to the analysis of cyber threat intelligence and apply findings to bolster defensive and responsive actions
Post-incident analysis, assisting in identifying root causes, mining lessons learned, and reinforcing security measures
Contribute to training and skill development opportunities for self and other team members
Develop or refine policies and requirements for data collection, processing, and reporting
Recommend cyber defense software or hardware to support responses to cyber incidents
Adhere to legal policies and procedures related to handling digital media
Stay current on emerging threats, attack techniques, and vulnerabilities
Write and execute scripts to automate tasks, such as parsing large data files
Write cyber defense recommendations, reports, or white papers using research or experience
Write accurate technical summaries to report findings and recommendations

Qualification

Digital ForensicsIncident ResponseThreat HuntingMalware AnalysisSplunk Enterprise SecurityMicrosoft Defender for EndpointForensic ToolsCybersecurity CertificationsScriptingProblem-solvingCommunication SkillsAdaptabilityTeamwork

Required

Bachelor's degree (or equivalent experience) in Cybersecurity, Information Technology, or a related field
Minimum of 3 years of relevant experience in direct digital forensics or incident response within large enterprise federal government or corporate environments
Active Top-Secret Clearance with SCI Eligibility
Must be able to pass a background check and CI Polygraph. May require additional background checks as required by projects and/or clients at any time during employment
Skilled in the use of Incident Response tools such as Splunk Enterprise Security and Microsoft Defender for Endpoint, for conducting sophisticated cyber incident monitoring and analysis
Well-versed in employing forensic tools and suites such as Magnet Axiom, Exterro FTK, Cellebrite Physical Analyzer, Kape, and Open-Source tools to support investigative processes
Adept at conducting open-source research to identify and understand active or potential threats
Must possess problem-solving skills
Exceptional communication skills, both oral and written
Must be able to work effectively in a high-stress environment during critical incidents and be adaptable to a dynamic operational speed
Ability to respond to customers effectively and with a sense of urgency
Proficient in Microsoft and Adobe toolsets, including Excel, Word, PowerPoint, Acrobat, etc
Highly motivated with the ability to handle and manage multiple tasks at any one time
Ability to forge new relationships with both individuals and teams
Must be a self-starter, that can work independently and as part of a team

Preferred

Relevant cybersecurity certifications such as GIAC
Solid foundation in the principles and practices of digital forensics methodologies and incident handling
Familiarity with cybersecurity frameworks, standards, and best practices
Experience with malware analysis and reverse engineering
Scripting, coding, and query language experience (PowerShell, Python, Microsoft KQL, Splunk SPL, etc)
Experience conducting Incident Response in AWS Cloud environments

Benefits

Medical, Dental and Vision Insurance; Wellness Program
Flexible Spending Accounts (Healthcare, Dependent Care, Commuter)
Short-Term and Long-Term Disability options
Basic Life and AD&D Insurance (Company Provided)
Voluntary Life and AD&D options
401(k) Retirement Savings Plan with matching after one year
Paid Time Off

Company

Cayuse Holdings

twittertwitter
company-logo
Cayuse Holdings is an economic enterprise that specializes in providing sourcing and diversity solutions.
dateFounded in 2018
location
Pendleton, Oregon, USA
people-size501-1000 employees
web-link
https://www.cayuseholdings.com/

Funding

Current Stage
Late Stage
Company data provided by crunchbase