Managing Consultant - Incident Response/Digital Forensics (EMEA)

  • Category: Security Services
  • Team: Consulting & Professional Services
  • Location: London, United Kingdom

Description

Position at Trustwave

Trustwave is a leading cybersecurity and managed security services provider that helps businesses fight cybercrime, protect data and reduce security risk. Offering a comprehensive portfolio of managed security services, security testing, consulting, technology solutions and cybersecurity education, Trustwave helps businesses embrace digital transformation securely. Trustwave is a Singtel company and the global security arm of Singtel, Optus and NCS, with customers in 96 countries. For more information about Trustwave, visit https://www.trustwave.com.


Trustwave SpiderLabs is the advanced security team responsible for security research, application security, incident response and penetration testing for Trustwave's clients. In addition, Trustwave SpiderLabs performs 3rd party security reviews and intelligence for Trustwave's products and provides security thought leadership to the entire organization. Members of Trustwave SpiderLabs are frequently asked to speak at security conferences around the world.

This role will include delivering services across the full breadth of SpiderLabs’ service portfolio. It is a unique opportunity to be a part of a talented, global team, and to work on a diverse and very interesting set of projects.   These projects include infrastructure penetration testing, both internal and external, application security and incident response services.  

Responsibilities:

Be responsible for leading the SpiderLabs incident response (reactive and proactive) incident management-related engagements by identifying and remediating malicious applications, including, but not limited to the following activities:

Reactive:

    • Live incident response, systems triage, containment, and remediation
    • PCI forensic investigations (PFI)
    • Compromise assessment
    • Digital forensics
    • eDiscovery
    • Mobile phone forensics
    • Administrator lockout
    • Malware analysis
    • Network traffic analysis
      • Proactive:
        • Incident response risk assessments
        • Incident management program development
        • Incident management training
        • Incident management tabletop exercises
        • Live attack simulation

As a Managing Consultant, you will be asked to:

        • To be a leader in investigative architecture and provide internal or external teams with documentation and methodology sufficient to conduct an investigation to successful completion
        • Be a subject matter expert in information security and emerging threat trends and tools & methodologies to combat the same
        • Provide customers with through investigations in compliance with regulatory requirements
        • Lead the analysis of security infrastructure and configuration to identify points of vulnerability and suggest recommendations for remediation

The ideal applicant will have expert-level experience in both incident response and penetration testing – we will only consider candidates with commercial penetration testing experience as well as commercial incident response and computer forensics experience.  

Skill Requirements:   

Forensics

        • Excellent working knowledge of EnCase, as well as open source alternatives. 
        • Experience in payment card forensics (under the PCI PFI program)
        • Experience with scripting in Perl/Python/Ruby very desirable, but not required. 
        • Experience with both desktop-based and server-based forensics. 
        • Experience with compromises involving web applications. Reverse engineering skills very desirable, but not required. 

Penetration Testing

        • Excellent working knowledge of computer networks and their vulnerabilities. 
        • Excellent working knowledge of layer-two networking issues. 
        • Excellent operating system knowledge in Windows-based and Unix-based systems. 
        • Knowledge of and demonstrable experience with a wide range of different attack tools. 
        • Application testing skills are considered a bonus, but are not a requirement

  Other Requirements 

        • Superb written and verbal communication skills (second-language skills are desired)
        • Ability to travel (primarily domestically) 
        • Ability to lead teams of both direct as well as indirect reports
        • Ability to foster and develop strong client relationships.

Education:

We prefer college-educated applicants, but at minimum, high school diploma or equivalent is required for employment.

Trustwave is an Equal Opportunity Employer of Minorities, Females, Protected Veterans, and Individuals with Disabilities.

To All Agencies:

Please, no phone calls or emails to any employee of Trustwave outside of the Talent Acquisition team. Trustwave’s policy is to only accept resumes from agencies via the Trustwave Agency Portal. Agencies must have a valid fee agreement in place and they must have been assigned the specific requisition to which they submit resumes, by the Talent Acquisition team. Any resume submitted outside of this process will be deemed the sole property of Trustwave and in the event a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid.

Share this opportunity

Trustwave is an Equal Opportunity Employer of Minorities, Females, Protected Veterans, and Individuals with Disabilities.

Trustwave helps businesses fight cybercrime, protect data and reduce security risk. With cloud and managed security services, integrated technologies and a team of security experts, ethical hackers and researchers, Trustwave enables businesses to transform the way they manage their information security and compliance programs. Trustwave delivers automated, efficient and cost-effective threat, vulnerability and compliance management. Trustwave is headquartered in Chicago, with customers in 96 countries. For more information about Trustwave, visit www.trustwave.com.

To All Agencies: Please, no phone calls or emails to any employee of Trustwave outside of the Talent Acquisition team. Trustwave policy is to only accept resumes from agencies via the Trustwave Agency Portal. Agencies must have a valid fee agreement in place and they must have been assigned the specific requisition to which they submit resumes, by the Talent Acquisition team. Any resume submitted outside of this process will be deemed the sole property of Trustwave and in the event a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid.