Principal Cyber Security Incident Handler / DFIR
Job Description A leading healthcare company is seeking a Principal Cyber Security Incident Handler to join their dynamic team. You will be responsible for utilizing incident response, investigative and forensics skills to respond to security breaches, implement containment measures, and investigate impacts. You'll use forensic best practices and provide chain of custody service for criminal investigations involving issues such as fraud, employee situations, etc. You'll evaluate artifacts for malicious activity, identify attack vectors, exploit methods, perform RCA and recommend mitigation strategies, and help minimize the impact on business and medical services. This role is 100% Remote but candidates must reside in California, Oregon, Washington, Colorado, Georgia, Virginia, Maryland, or Washington DC. This is a 12 month contract with opportunity for full time conversion or contract extension. Required Skills & Experience • 10+ years of cyber security digital forensics • Expertise in security controls such as EDR, forensics tools, intrusion prevention, authentication, data collection and analysis, and SIEM • Strong understanding of malware and attacker techniques • Ability to perform deep-dive analysis to determine root cause and full impact of incidents • Strong communication and documentation skills • Ability to respond quickly Apply tot his job