Incident Response Senior Associate

Individual Contributor
Remote-Friendly
Remote, US (Remote)
Posted 12 months ago
This position has been filled
Experience level: 2+ years

This content was reproduced from the employer’s website on May 3, 2023. Please visit their website below for the most up-to-date information about this position.

OPPORTUNITY OVERVIEW

ZeroFox seeks an incident response associate to leverage your experience and skills to deliver cybersecurity guidance and services to clients preparing and responding to cyber incidents. In this role, you will use your understanding of both existing and emerging threat actors, as well as experience identifying rapidly changing tools, tactics and procedures of attackers. The successful candidate will be passionate about cyber security, digital investigations and continuous learning and possess sound business judgment, strong consulting skills, and current technical skills. Candidates will be expected to help respond to cybersecurity incidents under tight deadlines and be able to explain technical concepts to a non-technical audience.

Responsibilities

- Investigate network intrusions and other cybersecurity incidents to understand the cause and extent of the breach.
- Perform host-based and network-based analysis across all major operating systems and network device platforms.
- Produce high-quality oral and written work products based on analysis.
- Assist with internal practice development and training initiatives.
- Ability to perform malware analysis.
- Develop and refine policies and procedures for forensic and malware analysis.
- Experience with scripting and command-line tools.
- Ability to provide after-hours support as needed.

Desired qualifications and skills

- Conduct technical investigations including acquisition, triage, and analysis
- Strong written and oral communication skills; comfortable with providing briefings and presentations.
- Deploy security tools to assist with detecting, responding, containing, and remediating threats.
- Able to solve problems in fast-paced situations and implement countermeasures.
- Experience writing detections and perform threat hunting using EDR and SIEM technologies.
- Familiarity with the Mitre ATT&CK framework.
- Security related certifications preferred (GIAC GCIH, GCFA, CISSP, CEH, etc.)
- 2+ years of hand-on experience in digital forensics and incident response

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.