Senior Incident Response & Digital Forensics Engineer (DFIR) | Technology-Driven Quantitative Trading Firm jobs in United States
cer-icon
Apply on Employer Site
company-logo

Techfellow Limited ยท 2 days ago

Senior Incident Response & Digital Forensics Engineer (DFIR) | Technology-Driven Quantitative Trading Firm

positionNew York, United States
timeFull-time
remoteHybrid
senioritySenior Level
money$400K/yr - $550K/yr
date5+ years exp

Techfellow Limited is a technology-driven quantitative trading firm seeking a Senior Incident Response & Digital Forensics Engineer to enhance their cyber defense capabilities. The role involves leading incident response investigations, performing forensic examinations, and improving DFIR workflows within a high-performance environment.

EmploymentHuman ResourcesRecruiting

Responsibilities

Lead and execute end-to-end incident response investigations, from initial signal through containment, root cause analysis, and post-incident learning
Perform deep forensic examinations across endpoints, servers, and enterprise platforms to reconstruct attacker activity and determine true scope and impact
Conduct detailed post-incident analysis, translating technical findings into actionable insights and long-term defensive improvements
Build, extend, and automate DFIR workflows - particularly in Windows-heavy environments, with scripting used to scale response capability
Partner closely with the incident commander and senior security engineers to evolve global IR processes, playbooks, and tooling
Communicate clearly and credibly with both highly technical peers and senior non-technical stakeholders during high-pressure incidents
Contribute to custom detection and protection controls informed by real investigation experience, not theoretical threat models

Qualification

Incident ResponseDigital ForensicsCommand-Line ProficiencyWindows InternalsAutomationScriptingIntellectual CuriosityCommunication Skills

Required

5-10+ years of hands-on experience in incident response, digital forensics, or advanced security operations within complex environments
Proven ability to independently run serious DFIR investigations, including determining attacker techniques, timelines, and blast radius
Strong command-line proficiency (this is explicitly assessed during interview) across Windows and Linux systems
Deep familiarity with Windows internals, endpoint artefacts, memory/disk analysis, and enterprise logging sources
Comfort working in mixed Windows/Linux estates at scale
Demonstrated interest and capability in automation and scripting, using code to improve response speed, accuracy, and repeatability
Confidence operating as a senior individual contributor, influencing outcomes without formal management responsibility
Ability to write clear, defensible incident reports and explain complex findings to non-security audiences under pressure
Intellectual curiosity - someone who wants to understand why something happened, not just close the ticket

Benefits

Hybrid Working

Company

Techfellow Limited

twittertwittertwitter
company-logo
We partner with trading, investment and fintech firms who depend on high-calibre engineering to compete.
dateFounded in 2012
location
London, England, GBR
people-size11-50 employees
web-link
https://www.techfellow.co.uk

Funding

Current Stage
Early Stage
Company data provided by crunchbase