DFIR Cybersecurity Consultant (Remote)

Written By Megan Coleman

< Back to Careers

The role of the Consultant at PNG Cyber involves conducting forensics work for all investigative cases assigned to the team, serving as the incident investigator, and participating in cyber investigations as a contributing member of the larger team. This consists of collecting and analyzing data, documenting the analysis processes and procedures, and updating the Senior Consultant and Case Manager on the analysis results for inclusion in client updates and reports. The Consultant must be capable of determining how a system or network was impacted during a cyber incident. The Consultant must be agile, multitask, and switch focus regularly in a rapidly changing environment. 

Job Description:

  • Actively participate in forensic analysis during Incident Response and digital forensics engagements concerning ransomware, business email compromises, litigation support, and other cyber incidents. 

  • Must be customer-service oriented and dedicated to resolving issues effectively and efficiently.  Demonstrate the ability to listen to and understand the client's needs and communicate findings in a digestible format.

  • High-availability and responsiveness to deadlines.

  • Communicate and engage with threat actors to resolve cybersecurity incidents.

  • Take part in creating, developing, and introducing modern forensic techniques or solutions.

  • Continuous self-development and training regarding Incident Response and Digital forensics best practices.

  • Perform audits of computer systems and networks

  • Produce high-quality technical reports. With a strong focus on grammar, spelling, formatting, and professionalism.

Qualifications and Required/Preferred Experience:

  • A Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Security, or other related fields is preferred, but not required. 

  • 1 to 3 years of relevant experience with a proven track record in data analysis related to ransomware, business email compromise, litigation support, and other cyber incidents.  

  • Although we strive to enhance a healthy work-life balance, Incident Response often requires sporadic and unpredictable work hours. Weekend and non-traditional work hours are necessary for the position. 

  • Professional certifications such as GCFE, GCFA, GCIH, GNFA, GASF, CISSP, and other relevant certifications are preferred

  • Knowledge and experience utilizing forensic tools, software, and methodologies.  

  • Knowledge of scripting languages, such as C, C++, Visual Basic, Python, PowerShell, and Bash, is desirable, but not required. 

  • Collaborate with the team to ensure that forensics processes and procedures adhere to industry standards.  

  • Working on internal projects such as coding, scripting, documentation, and creating tools related to innovation and automation

  • Assist with EDR deployment, monitoring, and triage collection. 

Location: Remote

Megan Coleman

Megan is a Squarespace web designer located in Sugar Land, Texas, serving nonprofits, churches and small businesses.

Previous

DFIR Senior Cybersecurity Consultant (Remote)