Mandiant logo
Senior Incident Response Remediation Consultant - Weekends (Remote US) - Mandiant Denver, CO Bookmark Share Print 60 0 0

Listing Description


Job Description

Mandiant’s Security Transformation Services team helps organizations build an effective security operations program that minimizes organizational risk and reduces the impact of security breaches. Our consultants partner with clients to evaluate, create, develop, improve, and mature information security operations and programs. By utilizing the latest industry standards and combining experience and knowledge gained from Mandiant Incident Response, Intelligence and Managed Defense practices, we are able to help clients contain security events, harden their environments, and transform their security programs. 

Mandiant seeks a Principal Remediation Consultant with strong leadership and technical skills to lead complex projects and work with our clients. Candidates will need to apply their Active Directory, network architecture, security hardening, and logging enforcement skills to assist clients with containment and remediation workstreams. Our consultants must be comfortable both leading and working in teams to tackle challenging projects, communicate with clients, provide hands-on assistance with containment and remediation activities, and create and present high-quality deliverables under tight deadlines.  This is a full-time position covering the weekend-shift with no travel requirement. Candidates will be fully remote and must work from Friday - Monday. 

What You Will Do:  

  • Lead and conduct Incident Response containment and remediation engagements for clients. 

  • Create and document detailed remediation guides and tracking documents, for clients to leverage to prepare for and execute a coordinated remediation event. 

  • Design and assist clients with network architecture enhancements and configuration modifications to defend against identified threats and attacker techniques. 

  • Recommend and document specific counter-measures and mitigating controls. 

  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences. 

  • Effectively communicate remediation strategies and workstreams to client stakeholders including technical staff, executive leadership, and legal counsel. 

  • Provide attention to details to ensure proper coordination and synchronization with both internal and external stakeholders. 


Qualifications
  • Ability to work Friday through Monday. 

  • Prior experience as a lead system administrator or network engineer in an enterprise environment. 

  • Thorough understanding of enterprise security controls in Microsoft Active Directory environments – including scalable architectures and risk reduction strategies. 

  • Thorough understanding of cloud computing concepts and security capabilities across hybrid architectures. 

  • Identity management best practices – including identifying, managing, and securing privileged identities. 

  • Expertise with practical and scalable security controls that can contain and harden both on-premises (Windows / Unix) and cloud-based environments. 

  • Understanding of enterprise networking and knowledge of network segmentation strategies. 

  • Implementation and management for both network and host-based firewall configurations. 

  • Implementation of logging configurations for network devices, endpoints (Windows / Unix), and cloud-based infrastructures. 

  • PowerShell or Python scripting. 

  • Communication to both technical and non-technical audiences. 

  • Strong collaboration with both internal and external stakeholders. 

Additional Qualifications:  

  • Ability to successfully interface with clients and manage expectations. 

  • Ability to effectively communicate remediation strategies to technical staff, executive leadership, legal counsel, and internal and external stakeholders. 

  • Ability to document and explain technical details in a clear and concise manner. 

  • Ability to work Friday through Monday. 


Additional Information

As a U.S. Federal contractor, Mandiant has adopted a COVID-19 Vaccination Policy to comply with our obligations under applicable laws and requirements. This position may be covered under Mandiant’s COVID-19 Vaccination Policy, as required in order to support federal contracts, access company offices and/or attend in-person meetings and work events. If covered under this policy, proof of vaccination against COVID-19 may be required as a condition of hire. At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence.

Minimum Salary: $115,000. Final salary will be determined commensurately with cost of living, experience level, and/or any other legally permissible considerations. 

Incentive Compensation: Eligibility for annual bonus subject to individual and company performance; eligibility for award of Restricted Stock Units subject to eligibility requirements, approval from Mandiant’s Compensation Committee, and vesting terms  

Benefits: Employer subsidized benefits include Medical, Dental, Vision, Life, and Disability Insurance. Subject to eligibility requirements, Mandiant also offers the ability to participate in 401(k), Flexible Spending Accounts, Health Savings Accounts, Dependent Care Spending Accounts, and Employee Stock Purchase Program. Mandiant also provides Paid Time Off, Flexible Paid Sick Time, and Paid Holidays.  

All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. 


Listing Details

  • Citizenship: Not Provided
  • Incentives: Not Provided

 

  • Education: Not Provided
  • Travel: Not Provided
  • Telework: Full Telecommute

About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765