Job Details

Senior Consultant, Federal Services (CONSULTANCY)

ANYWHERE, United States
  • Employment Type: Direct Hire
Our client, a global leader in endpoint security, detection, and response, is seeking a Senior Consultant, Federal Services to join their expanding team. The successful candidate must currently hold a secret clearance and have experience working in government and public sector affairs with a focus in digital forensics and incident response. This includes experience refining cyber security priorities and working across both technical and non-technical stakeholders across organizations to improve overall cyber posture. As a Senior Consultant in the Federal Services group, this candidate must have strong hands-on technical experience with conducting and managing IR investigations for targeted threats, organized crime or hacktivists as needed. Strong knowledge of network protocols in relation to forensic analysis and the ability to perform static and dynamic malware analysis is preferred. Strong experience giving presentations and confidence in providing recommendations and findings of written analysis directly to the customer is required. Resumes to [email protected].

Typical Responsibilities:
  • Performs host and/or network-based forensics across Windows, Mac, and Linux platforms
  • Performs basic malware analysis
  • Conducts red-team, penetration testing activities by leveraging actual adversary TTPs
  • Assesses and develops information security and incident response programs in a proactive fashion to help mature the security posture of organizations prior to an incident
  • Leads incident response and proactive engagements
  • Produces high-quality written and verbal reports, presentations, recommendations, and findings to customer management
  • Demonstrates industry thought leadership through blog posts and other public speaking events
  • Manages internal programs or teams
Qualifications:
  • Public / Government Affairs: have experience helping government organizations, or entities that work closely with governments, refine cyber security priorities and communicate clearly about these priorities; experienced in working across diverse sets of technical and non-technical stakeholders in an organization to develop defensible, actionable priorities and plans for improving cyber security
  • Incident Response: experience conducting or managing incident response investigations for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hactivists
  • Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise
  • Network Forensic Analysis: strong knowledge of network protocols, network analysis tools like Bro/Zeek or Suricata, and ability to perform analysis of associated network logs
  • Reverse Engineering: ability to perform static and dynamic malware analysis
  • Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations
  • Network Operations and Architecture/Engineering: strong understanding of secure network architecture and strong background in performing network operations
  • Cloud Development: excellent knowledge in any of the following areas: AWS, Azure, GCP, Splunk or Elasticsearch
  • Programming/Scripting: experience coding in Python, PowerShell, Bash or Go
  • Additionally, all candidates must possess the following qualifications:
  • U.S. Citizenship with active DoD level security clearance with a background investigation within the last five years
  • Must possess or be able to obtain CISSP or Security+ certification in compliance with DoD 8570 within six months from start date
  • Capable of completing technical tasks without supervision
  • Desire to grow and expand both technical and soft skills
  • Strong project management skills
  • Contributing thought leader within the incident response industry
  • Ability to foster a positive work environment and attitude
  • Ability to travel on short notice, up to 50% of the time
Education:
  • Seeking candidates with the right combination of training and skills to join our team. Successful candidates coming from an academic background will likely have a BA or BS degree, in Computer Science, Computer Engineering, Electrical Engineering, Math, Information Security, Information Assurance, Management Information Security, Cybersecurity, Cybersecurity Policy, Public Policy, Intelligence Studies, or a related field. Applicants without a degree, but with relevant military or work experience and/or training will be considered and should apply their previous experience to the qualification areas above.

 

Interested in this job? Get in touch.

(Accepted file formats are PDF, DOC, DOCX, TXT, RTF and ZIP. File size maximum is 2 MB.)