Full-Time DFIR Consultant, Reactive Services (Unit 42) - Remote
Palo Alto Networks is hiring a remote Full-Time DFIR Consultant, Reactive Services (Unit 42) - Remote. The career level for this job opening is Experienced and is accepting New York, NY based applicants remotely. Read complete job description before applying.
Palo Alto Networks
Job Title
Posted
Career Level
Career Level
Locations Accepted
Salary
Share
Job Details
Perform reactive incident response functions including but not limited to - host-based analysis functions through investigating Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs)
Examine firewall, web, database, and other log sources to identify evidence and artifacts of malicious and compromised activity
Investigate data breaches leveraging forensics tools including Encase, FTK, X-Ways, SIFT, Splunk, and custom Unit 42 investigation tools to determine the source of compromises and malicious activity that occurred in client environments
Serve an active role on unit 42, incident response engagements - guiding clients through digital forensics investigations, containment of security incidents, and providing guidance on tactical remediation recommendations
Ability to perform light travel requirements as needed to meet business demands (on average 30%)
Your Experience:- 2+ years of incident response or digital forensics experience with a passion for cybersecurity
- Proficient with host-based forensics and data breach response
- Experienced with EnCase, FTK, X-Ways, SIFT, Splunk, Volatility, WireShark, TCPDump, and open-source forensic tools
- Incident Response Consulting is highly preferred
- Bachelor’s Degree in Information Security, Digital Forensics, Cyber Security, Computer Science, related field, or equivalent experience required