FireEye, Inc. logo
Incident Response Consultant - FireEye, Inc. Dallas, TX, USA Bookmark Share Print 283 2 9

Listing Description

Position Title: Incident Response Consultant

Location: Dallas, TX

The Company:

FireEye is the intelligence-led security company. Working as a seamless, scalable extension of customer security operations, FireEye offers a single platform that blends innovative security technologies, nation-state grade threat intelligence, and world-renowned Mandiant® consulting. With this approach, FireEye eliminates the complexity and burden of cyber security for organizations struggling to prepare for, prevent, and respond to cyber attacks. FireEye has over 6,300 customers across 67 countries, including more than 40 percent of the Forbes Global 2000.

The Role:

Interested in investigating computer crimes and breaches that make the headlines – and many more that don’t? Can you think like an attacker to stay one step ahead of them, or understand the operational security controls needed to detect, remediate, and prevent compromises? Mandiant seeks Incident Response Consultants with strong technical skills and an eagerness to lead projects and work with our clients. Candidates will need to apply their forensics, log analysis, and malware triage skills to solve complex intrusion cases at organizations around the world. Our consultants must be comfortable working in teams to tackle challenging projects, communicating with clients, and creating and presenting high-quality deliverables.

Responsibilities:

Conduct host forensics, network, forensics, log analysis, and malware triage in support of incident response investigations.

Utilize Mandiant and FireEye technology to conduct large-scale investigations and examine endpoint and network-based sources of evidence.

Recognize and codify attacker tools, tactics, and procedures in indicators of compromise (IOCs) that can be applied to current and future investigations.

Build scripts, tools, or methodologies to enhance Mandiant’s incident investigation processes.

Develop comprehensive and accurate reports and presentations for both technical and executive audiences.

Effectively communicate investigative findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel.

Work with security and IT operations at clients to implement remediation plans in response to incidents.

Assist with scoping prospective engagements, participating in investigations from kickoff through remediation, and mentoring less experienced staff.

Requirements:

Bachelor’s degree in a technical field

Minimum 2-5 years of comparable experience; minimum 8 years of experience if no degree

Must be eligible to work in the US without sponsorship

Technical expertise in at least three of the following areas:

Windows disk and memory forensics

Network Security Monitoring (NSM), network traffic analysis, and log analysis

Unix or Linux disk and memory forensics

Static and dynamic malware analysis

Applied knowledge in at least one scripting or development language (such as Python)

Thorough understanding of enterprise security controls in Active Directory / Windows environments

Additional Qualifications:

Willingness to travel up to 30%

Ability to successfully interface with both internal and external clients

Ability to document and explain technical details in a concise, understandable manner

Ability to manage and balance own time among multiple tasks, and lead junior staff when required

FireEye is an Equal Opportunity Employer: All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, national origin, protected veteran status, or on the basis of disability. Click here to view the full EEO/AA statement.Conduct host forensics, network, forensics, log analysis, and malware triage in support of incident response investigations.

Utilize Mandiant and FireEye technology to conduct large-scale investigations and examine endpoint and network-based sources of evidence.

Recognize and codify attacker tools, tactics, and procedures in indicators of compromise (IOCs) that can be applied to current and future investigations.

Build scripts, tools, or methodologies to enhance Mandiant’s incident investigation processes.

Develop comprehensive and accurate reports and presentations for both technical and executive audiences.

Effectively communicate investigative findings and strategy to client stakeholders including technical staff, executive leadership, and legal counsel.

Work with security and IT operations at clients to implement remediation plans in response to incidents.

Assist with scoping prospective engagements, participating in investigations from kickoff through remediation, and mentoring less experienced staff.


Listing Details

  • Citizenship: No Requirements
  • Incentives: Both

 

  • Education: Bachelors Degree
  • Travel: Travel 25
  • Telework: Optional Telecommute



About Us

NinjaJobs is a community-run job platform developed by information security professionals. Our unique approach of focusing strictly on cybersecurity positions allows us to personalize the user experience.

Our Contacts

1765 Greensboro Station Pl.
Suite 900
Tysons Corner Va 22102

(703) 594-7765