Incident Response Analyst - Montreal - Jobs in Vancouver, BC

Job Description

Incident Response Analyst - Job DescriptionCompany SummaryEstablished in 2006, CyberClan’ carefully selected team of experts are capable of solving complex cyber security challenges – keeping data secure and businesses running as usual. CyberClan’ Global Incident Response Teams are available 24/7/365 to leap into action, responding to all cyber attacks with proven defensive methodology. Our goal is to get businesses fully operational as quickly as possible and to further prevent any downtown or impact to the business operations. CyberClan investigates and assists clients with all types of security breaches, insider threat, unauthorized access, malicious code.Summary/ObjectiveThe Incident Response Analyst is a highly motivated self-starter with a passion for problem solving through challenging and high-stakes situations. This exciting role presents the opportunity to dive deep into host systems and track down attacker activity and indicators of compromise. You will be able to work alongside an excelling team while you uncover threats to protect the infrastructure and aid in the recovery of essential business operations.Essential FunctionsConduct host, network, application and mobile forensics technical investigationsTriage active high-stakes security events, including reviewing and applying security controls to detect, respond, prevent and remediate threatsRecognize and codify attacker tools, tactics, and procedures in indicators of compromise (IOCs) that can be applied to current and future investigationsDevelop custom scripts, tools, or methodologies to enhance CyberClan’s incident response processes for a wide range of systems and technologiesDevelop comprehensive and accurate reports of forensic findings and Incident Response activities for both technical and executive audiencesEffectively communicate investigative findings and strategy to client stakeholders including technical staff, executive leadership, third-party stakeholders, underwriters, and legal counselProvide clients with immediate actionable 0-day cyber security advise to stop and mitigate the damage of ongoing attacksAssist with the scoping of new engagements using a whole lifecycle approach, guiding the client from initial discovery through mitigation and remediationRequired Skills, Experience, Degrees or CertificationFluent or native French (Highly preferred)5+ years of experience in a forensic and incident response roleDemonstrated experience in using analytical skills in a cyber security environment do triage and detect what events transpiredDemonstrated ability to make decisions on remediation and counter measures for challenging information security threatsStrong hands-on working knowledge of:Windows OS and networking protocolsWindows disk and memory forensicsUnix OS and networking protocolsNetwork traffic analysisScripting and/or programmingPreferred Skills, Experience, Degrees or CertificationsPreference on one or more of the following technical certifications: GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), MCFE, EnCE or equivalent certificationsExperience in a technical role for a consulting companyDemonstrated experience dealing with Ransomware forensic investigationsFamiliarity with MITRE Att&ck Framework and how it corresponds with a Ransomware attackFamiliarity with Ransomware, Ransomware Groups, Ransomware IOCs and PTT (Procedures, Tactics and Techniques)Hands-on experience with commercial EDR and Forensic tool suites (CarbonBlack, AXIOM, CrowdStrike, EnCase)Reverse-engineering and malware analysisJob TypeFull-time/ExemptLocation100% TelecommutingMust be authorized to work in Canada%of Travel Required0-5%Physical RequirementsProlonged periods of sitting at a desk and working on a computer.CyberClan is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability statusQuick Apply

• Terms & Conditions
• New Privacy
• Privacy Center
• Accessibility

For Job Seekers

• Browse Jobs
• Advanced Job Search
• Emplois Quebec

For Employers

• Post a Job

Stay Connected