Incident Response Consultant

Ref Number

1302

Type

Permanent

Location

UK wide

Clearance

N/A

Salary

Competitive

We are partnering a Global IT Leader in building their Incident Response function for their ever-expanding client base. We require technical experts who can go onsite and respond to cyber events providing full support in remediating/ preventing business critical attacks. The work will vary from complex malware attacks to remediating threats associated with how a client already operates.

You will be expected to take a lead in a dynamic environment where you will be the trusted Subject Matter Expert onsite. Every project will differ from client to client so if it’s varied yet highly technical work you are looking for then apply now.

Role Requirements

Responsibilities

Provide Incident response to customers as an SME onsite

Threats may be external or internal so an efficient yet effective method of working will be vital

Host based incident response working with industry standard tools such as X-Ways, Volatility etc

An understanding of network incident response and the ability to respond to events

Provide bespoke exercises for customers which will educate them on preventing future attacks

Lead on Threat Hunting within customer networks utilising a range of tools Perform Incident Response Readiness Assessments for customers

Draft communications, assessments, and reports that may be both internal and customer facing, to include leadership and executive management

Understanding of different attacks and how best to design custom containment and remediation plans for customers

Where necessary you may be required to manage relationships between various stakeholders and vendors

Develop and document water-tight processes to prevent future incidents and promote best practice

Desirable Skills

A broad understanding of Cyber Security threats and methods of remediation.

Experience in handling a range of issues from complex APT campaigns to devious script kiddies

The ability to reverse malicious software is not essential but would be a bonus

Experience in threat hunting within an organisation

Would you like to be considered for this role?