IT Job Pro

Most Popular Tech Job site – Find Jobs || Post Jobs

Associate Director of Incident Response and Forensics

Digital Forensics & Incident
Response

Our client differentiates itself by providing not only
the opportunities for growth, entrepreneurship, and competitive salaries that
you would find in a much larger organization, but also it is run by
transparent, staff focused and caring leadership, pays meaningful monthly and
annual bonuses based on objective performance measures, pays periodic spot and
performance bonuses, has a firm-paid family insurance plan and offers many
other great benefits.

Our client is a leading computer forensics and
investigations firm headquartered in San Francisco. Our firm consists of
certified professionals who specialize in forensic discovery, incident
response, and risk analysis. Our client provides security solutions worldwide
through a combination of technical, analytical, and legal tactics.

THE OPPORTUNITY – ASSOCIATE DIRECTOR

Our client is seeking a well-seasoned Associate
Director level Cyber Security Consultant for its Washington, DC office. The
ideal candidate will have six to eight years of hands-on Big 4 or similar Tier
1 or 2 and consulting experience managing and performing cyber/information
technology investigations, computer forensics, and incident response. The ideal
candidate will possess extensive knowledge of computer networks,
infrastructure, information technology security, operating systems, and
forensics tools as well as the ability to manage simultaneous projects, mentor
staff, and support business development efforts. A high level of customer
service and communication skills goes without saying.

The successful candidate must be one who understands the
relationships between business operations, information technology and security.
This individual must have demonstrated competence specific to technical information
security issues as well as the ability to manage and develop junior staff and
peers. Strong written and verbal communication skills are essential to
successfully translate technology and security requirements into business
terms.

DUTIES INCLUDE:

* Maintain working knowledge of advanced cyber
threat actor tactics and techniques
* Research, identify and understand new threats
* Lead and perform investigations and incident
response projects with commercial, open source and self-developed tools and
techniques
* Fully versed in current data collection,
storage, and chain of custody best practices
* Supervise penetration tests, vulnerability
assessments, firewall and architecture reviews
* Manage and perform reporting functions; lead presentations
of findings to team and clients
* Manage, mentor, recruit and train fellow team
members
* Be involved with the sales process by working
with the business development staff and clients to explain and demonstrate
services and products as a subject matter expert
* Assist sales staff with the creation and
delivery of proposals
* Internally educate business unit leaders,
staff and executive leadership on the information protection practice
* Excel as a self-motivated individual who can
work on their own as well as integrated with a team in a variety of situations
* Consistently work to improve our brand through
thought leadership
* REQUIRED EXPERIENCE:
* BA or equivalent field experience in
Cybersecurity, Computer Science, Information Security or other related fields
* Incident handling techniques and processes
* 5-8 years of consulting experience managing
and performing investigations, medium and large scale incident response, breach
notifications,
* Liaising with Leadership & C and E suite;
internal and external counsel; department head level client staff
* Project management experience
* Leadership and staff development experience
* Strong verbal and written skills ? report
writing, revision & review represent a significant portion of
responsibilities
* Strong knowledge of Windows, Linux, Mac OS ?
client/server architecture; significant familiarity with Linux/Unix (including
shell scripting)
* Firewalls, Networking equipment, networking
protocols ? significant exposure to network design,
analysis elements, do?s, don?ts, familiarity with networking protocols, strengths,
vulnerabilities, common attack vectors

PREFERRED SKILLS AND QUALIFICATIONS:

* Certifications from ISC2 (CISSP), ISACA (CISA,
CISM, CRISC), SANS (GCIH, GCIA, GREM, CCFA, GCFE), Encase (EnCE)
* Programming in one or more of the following –
CLI, Shell Scripting, Linux, Mac, C,
C++, Visual Basic, Python, Ruby, Javascript, Perl
* Encryption and encoding methods, communication
protocols, and algorithms
* Multi-disciplinary IT experience (IT Security,
IT Incident Response Team, IT Operations, Tier 2-3 Support, Data
Mining/Database management, etc.)
* Security tools such as Nexpose, Metasploit,
Nessus, Kali Linux, etc., as well as other various commercial and
self-developed tools
* Strong networking knowledge with a focus on
security
* Business development skills
* NIST frameworks including SP800-15
* Industry visibility through conference
presentations, blogging, academic papers and social media

The position is based in Washington, DC and is
full-time. Compensation will include an attractive base salary, incentive
compensation, and full benefits including health and 401(k). Salary is
commensurate with experience.

To apply for this job please visit itjobpro.com.