Job Details

Senior Consultant, Incident Response (CONSULTANCY)

Anywhere, Canada
  • Employment Type: Direct Hire

Our client, a global leader in endpoint security, detection and response, has a need for a bilingual, French and English-speaking Senior Incident Response Consultant in Canada (AB, ON, BC, MB or QC). The successful candidate will have exposure to and understanding of not only incident response, but experience with computer or network forensic analysis, incident remediation, reverse engineering, and more. This senior consultant will be responsible for leading incident response and proactive engagements, performing host and/or network-based forensics across multiple platforms, including Windows, Mac, and Linux. The ability to assess and develop information security and incident response programs in a proactive manner is desired. The Senior Incident Response Consultant must have the ability to communicate effectively in a cross-divisional environment, working both across internal teams and external clients. Strong experience giving presentations and confidence in providing recommendations and findings of written analysis directly to the customer is required. Send resumes to [email protected].

Typical Responsibilities:

  • Perform host and/or network-based forensics across Windows, Mac, and Linux platforms
  • Perform basic malware analysis
  • Conduct red-team, penetration testing activities by leveraging actual adversary TTPs
  • Assess and develop information security and incident response programs in a proactive fashion to help mature the security posture of organizations prior to an incident
  • Lead incident response and proactive engagements
  • Produce high-quality written and verbal reports, presentations, recommendations, and findings to customer management
  • Demonstrate industry thought leadership through blog posts and other public speaking events
  • Manage internal programs or teams


Required Qualifications

Successful candidates will have experience in one or more of the following areas:

  • Incident Response: experience conducting or managing incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hactivists
  • Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise
  • Network Forensic Analysis: strong knowledge of network protocols, network analysis tools like Bro/Zeek or Suricata, and ability to perform analysis of associated network logs
  • Reverse Engineering: ability to perform static and dynamic malware analysis
  • Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations
  • Network Operations and Architecture/Engineering: strong understanding of secure network architecture and strong background in performing network operations
  • Cloud Development: excellent knowledge in any of the following areas: AWS, Azure, GCP, Splunk or Elasticsearch
  • Programming/Scripting: experience coding in Python, Powershell, Bash or Go

 

Additional Qualifications

  • Capable of completing technical tasks without supervision
  • Desire to grow and expand both technical and soft skills
  • Strong project management skills
  • Contributing thought leader within the incident response industry
  • Ability to foster a positive work environment and attitude
  • Ability to travel on short notice, up to 50% of the time
  • Bilingual/Fluent in French/English

Interested in this job? Get in touch.

(Accepted file formats are PDF, DOC, DOCX, TXT, RTF and ZIP. File size maximum is 2 MB.)