Senior Advisor Incident Response Consultant

CybersecurityRemote, Brazil

Apply

Description

Lean Tech is a fast-growing company located in Medellín, Colombia. We currently have one of the most prominent networks within the entertainment, financial, and logistics industries. Our corporate projections represent hundreds of opportunities for our professionals to grow and boost their careers. Working with us means collaborating with large engineering teams across Latin America and the United States.  

We are currently looking for an experienced, dynamic, and highly motivated Senior Advisor Incident Response Consultant.  
  
The Senior Advisor, Incident Response Consultant will work with various teams and Incident Response\Readiness consultants to grow the cybersecurity consulting practice. The Incident Response Consultant is primarily focused on the delivery of emergency incident response services. This involves supporting customers by managing the technical and non-technical aspects of incident response, conducting investigative analysis using digital forensics methods to determine the nature, scope, and root cause of cyber incident activity, formulating recommendations for security posture enhancement, and developing tailored remediation plans.   
Additionally, the Incident Response Consultant may be required to deliver a range of proactive incident response services. These services include cyber threat hunting to help customers identify unknown compromise activity and gaps in their cybersecurity controls, as well as workshops, training courses, and exercises to help customers improve their incident response capabilities.    
  
Your Duties as a Lean Tech Warrior:  
  
  • Serve as a trusted advisor to assist customers through a cyber incident or data breach ensuring customer satisfaction.   
  • Serve as subject matter expert in digital forensics and incident response (DFIR).   
  • Perform complex incident response investigative analysis and develop assessments based on the analysis of host, network, and cloud digital artifacts.   
  • Document analysis findings and develop recommendations to present both orally and in written reports to customers.   
  • Conduct assessments of client readiness to respond to incidents, including designing and delivering incident response exercises to test client incident response plans.   
  • Develop detailed playbooks based on client needs.   
  • Design and deliver incident response exercises to test client incident response plans.   
  • Manage urgent and critical interactions with customers.   
  • Maintain a professional, calming, and authoritative presence during a crisis.   
  • Participate in a 24x7 on-call rotation for supporting requests from global incident response customers.   

Why We’ll Love You:  

  • Minimum of 5 years of advanced security, digital and network forensics experience   
  • Minimum of 3 years of experience with one or more of the following tools: Encase, FTK, X-Ways, F-Response, Volatility, Open-Source Forensics Tools   
  • Bachelor's degree in computer science, information systems, information assurance, or equivalent work experience   
  • Minimum of one or more of the following certifications: GREM, GCFA, GCFE, CISA or CISSPGCIH, GCFE, GCFA, GREM or similar certifications   
  • Strong communication skills (oral and written)   
  • Experience briefing senior-level leadership and conveying technical information to audiences of varying backgrounds and skill levels.   
  • Ability to prioritize urgent tasks and work multiple consulting engagements concurrently.   
  • Desire to work with customers to solve complex cybersecurity issues, including during crisis situations.   
  • Theoretical and practical knowledge in the following areas:   
    • Windows and Linux operating systems   
    • AWS, Azure (including Microsoft 365), and GCP   
    • Exploits, vulnerabilities, intrusion vectors, and malware   
    • Tactics, techniques, and procedures (TTPs) commonly employed by threat actors   
    • Host forensics, network forensics, and malware analysis techniques   
    • Network traffic analysis, endpoint activity analysis, and log analysis techniques   
    • Enterprise cyber incident management and response processes   
    • Enterprise cybersecurity controls and failure modes   
    • Modern Enterprise Detection and Response (EDR) tools.   

We are more than a company; we are warriors working daily to change the world through technology.   
  

   

Apply Apply Later
← Back to Current Openings

Share

Similar Jobs

{{ job.title }}