[Remote] Senior Digital Forensics and Incident Response Consultant

Note: The job is a remote job and is open to candidates in USA. Telescope Recruitment is a leading Cybersecurity company, and they are seeking a Senior Digital Forensics and Incident Response Consultant. This role involves engaging in incident response tasks, collecting forensic artifacts, and analyzing data to identify and remediate threats. Responsibilities • Engage in incident response tasks, interacting with various insurance partners, legal counsel, incident response units, client executives, and technical teams • Utilize standard tools and methodologies to collect forensic artifacts and images from affected systems • Assist with Windows forensics and triage to assess compromise and investigations • Familiarity with malware analysis tools and methodologies • Apply mitigation strategies and concepts to remediate identified threats • Analyze triage collections/artifacts for indicators of compromise (IOCs) and potentially malicious activity • Review logs from host systems and appliances to identify suspicious activities • Collect forensic disk and memory images from physical and virtual endpoints and servers • Understanding of an incident lifecycle and cyber-kill-chain • Correlate events and build timelines of events • Maintain current knowledge on emerging threats and vulnerabilities • Analyze files for IOCs using various techniques Skills • 6+ years of experience in digital forensics, incident response, or a similar role • Knowledge of Windows and Unix/Linux operating systems • Understanding of the functionality of EDR / EPP technologies • Familiarity with forensic acquisition and analysis of physical and virtual systems • Working knowledge of storage technologies such as RAID, NAS, SAN, Fiber Channel, iSCSI, and NFS • Ability to analyze and interpret logs from various sources • Ability to perform threat research and analyze current threats • Understanding of business email compromise (BEC) cases and investigation techniques • Participate in a rotating on-call schedule; ability to work on weekends and outside normal business hours as needed • Maintain current knowledge of information security, incident response techniques, emerging threats, and tools • Work independently and produce high-quality deliverables with minimal supervision • Exhibit strong customer service and consulting skills • Adhere to client and internal policies, procedures, and security practices • Maintain detailed notes and draft updates and reports as required • Remain calm, composed, and articulate in tough customer situations • Exhibit excellent relationship management and communication skills • Understand obfuscation techniques used to conceal malicious commands and traffic, and lateral movement strategies employed by threat actors • Familiarity with exfiltration techniques used by threat actors • Knowledge of SIEM and SOAR solutions • Experience with e-discovery tools and methodologies • Proficiency in collecting and analyzing data from mobile devices/cell phones • Industry certifications such as MCFE, ENCE, ACE, GCFA, GCIH, GNFA, GCFE or similar are a plus Benefits • 10% Annual Bonus • 3 weeks of Paid Vacation • 3 paid wellness days per year • Monthly cell/internet reimbursement • Opportunity to earn time in lieu or an extra variable performance bonus (when working after hours/weekends, etc) Company Overview • Welcome to Telescope Recruitment, where we serve as your gateway to exceptional talent and career opportunities. It was founded in 2023, and is headquartered in Toronto, ON, CA, with a workforce of 2-10 employees. Its website is Apply tot his job