Digital Forensics & Incident Response Specialist (DSC/SN)

Job Detail

We are seeking a highly skilled and experienced Digital Forensics & Incident Response Specialist to join our cybersecurity team. This role requires hands-on technical expertise in analyzing security incidents, conducting proactive threat hunts, and investigating breaches. The job: 1. Digital Forensics & Incident Response (DFIR) • Conduct comprehensive digital forensic investigations of security incidents, including malware infections, data breaches, insider threats, and advanced persistent threats (APTs). • Analyze and interpret security incidents and vulnerabilities using forensic tools and methodologies. • Collect, preserve, and analyze digital evidence from various systems and environments. • Develop and execute incident response plans, provide guidance on containment, eradication, and recovery processes. • Document findings and produce detailed investigation reports for internal stakeholders and external authorities, if necessary. • Collaborate with the legal and compliance teams to ensure evidence handling follows industry standards and regulations. 2. Threat Hunting • Participate and assist in the buildup of the threat hunting capability. • Participate/Support the development of threat hunting systems and tools to automate or facilitate threat hunting. • Lead/participate in the threat hunting projects to hunt for unknown threats focusing on discovering new or unknown Tactics, Techniques and Procedures (TTPs). • Develop and use threat hunting methodologies and tools to identify vulnerabilities, anomalies, and suspicious activities. • Identify and research emerging threats, vulnerabilities, and attack techniques to stay ahead of attackers. • Utilize threat intelligence feeds, behavior analytics, and machine learning to improve detection and hunting capabilities.