Consultant, DFIR, Reactive Services (Unit 42) - Remote

Job Summary

As a client-facing Consultant in our reactive services team, you will be a critical first responder for our customers. You will lead and manage incident response engagements from start to finish, working directly with diverse stakeholders, including C-suite executives, to guide them through complex cybersecurity incidents and deliver actionable solutions based on your findings.

Key Responsibilities

• Lead reactive incident response engagements, guiding clients through digital forensics investigations and security incident containment.
• Perform host-based forensic analysis across Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs).
• Investigate data breaches using advanced forensics tools (e.g., EnCase, FTK, Splunk) to determine the source and scope of malicious activity.
• Examine firewall, web, database, and other log sources to identify evidence and artifacts of compromise.
• Proactively collaborate with clients and internal teams, providing expert guidance on tactical remediation recommendations to improve their security posture.
• Produce and present high-quality deliverables for client engagements, communicating complex findings to both technical and executive stakeholders.
• Travel as needed (approximately 30%) to support client-facing engagement demands.