Role: Digital Forensic Incident Response (DFIR)
Location: Washington, DC (Onsite)
General skillsMust have
• 5+ years of experience with crisis management, incident response, strategic communications, or risk management
5 year(s) of experience
• 5+ years of experience in supporting the facilitation of trainings or briefing sessions
5 year(s) of experience
• Adept knowledge of cybersecurity and incident response principles, crisis management, and emergency management principles
5 year(s) of experience
• Ability to leverage available learning resources, both internal and external
5 year(s) of experience
• Experience with advanced Microsoft Office products
5 year(s) of experience
• Ability to work within a highly collaborative, fast-paced, dynamic environment
5 year(s) of experience
• Possession of excellent verbal and written communication skills
5 year(s) of experience
• Possession of excellent interpersonal skills, including client management skills
5 year(s) of experience
• Strong IR and Digital forensics experience and cloud experience are preferred
5 year(s) of experience
Experience required
Basic Qualifications:
- MUST BE A US CITIZEN
- Bachelor's degree
- An Active Top Secret Clearance with eligibility to obtain SCI and pass CI Poly
- 5+ years of experience with crisis management, incident response, strategic communications, or risk management
- 5+ years of experience in supporting the facilitation of trainings or briefing sessions
- Adept knowledge of cybersecurity and incident response principles, crisis management, and emergency management principles
- Ability to leverage available learning resources, both internal and external
- Experience with advanced Microsoft Office products
- Ability to work within a highly collaborative, fast-paced, dynamic environment
- Possession of excellent verbal and written communication skills
- Possession of excellent interpersonal skills, including client management skills
- Strong IR and Digital forensics experience and cloud experience are preferred
Additional Qualifications:
The ideal candidate will have experience with four or more of the items below:
- Splunk Search Processing Language (SPL)
- Microsoft Defender for Endpoint (MDE)
- Microsoft Azure Sentinel
- Kusto Query Language (KQL)
- Linux Bash
- PowerShell/CMD
- Networking - intermediate level knowledge of computer networking
- Type 2 Hypervisor software such as VMware Workstation Pro, VirtualBox, Hyper-V
- Comfortable using various distributions of Linux