DFIR Principal Consultant (Remote)

Written By Megan Coleman

< Back to Careers

A Principal Consultant at PNG Cyber assists with case management and leads a team in completing tasks required to keep cases progressing. In this hybrid team lead position, the individual will leverage technical expertise and serve as the primary point of contact for engagement stakeholders. Responsibilities include conducting scoping calls, directing client engagements, and maintaining regular communication with engagement stakeholders, such as clients and attorneys. The DFIR Principal Consultant is responsible for case intake for their team, the case management lifecycle for the cases they receive (scoping calls, preparing SOWs, work products, final reports, and invoicing), and managing the individuals who directly report to them.

Job Description:

  • Client-facing skills and the ability to communicate complex technical findings in layman's terms, both in person and on camera during virtual meetings.  

  • A strong technical and Incident Response background to properly provide quality control of work product.

  • Ability to lead scoping calls where all relevant information must be collected to generate an accurate statement of work. Serve as a central point for all client and counsel case communications.  

  • Ability to manage multiple engagements simultaneously and effectively.

  • Actively participate in Incident Response and digital forensics concerning ransomware, business email compromises, litigation support, and other cyber incidents. 

  • Must be customer-service oriented and dedicated to resolving issues effectively and efficiently.  Demonstrate the ability to listen to and understand the client's needs and communicate findings in a digestible format.

  • High-availability and responsiveness to deadlines.

  • Communicate and engage with threat actors to resolve cybersecurity incidents.

  • Engage in creating, developing, and implementing modern forensic techniques or solutions.

  • Ongoing self-development and training in best practices for incident response and computer forensics to attain technical and leadership excellence.

  • Produce high-quality technical reports. Conduct a thorough review of the report, focusing on grammar, spelling, formatting, and professionalism.

Qualifications and Required/Preferred Experience:

  • A Bachelor’s or Master’s degree in Cybersecurity, Computer Science, Information Security, or other related fields is preferred, but not required. 

  • 3 to 5 years of leadership experience with a proven track record in managing Incident Response efforts.    

  • Although we strive to enhance a healthy work-life balance, Incident Response often requires sporadic and unpredictable work hours. Weekend and non-traditional work hours are necessary for the position. 

  • Must be an effective problem solver, demonstrating the ability to tackle challenges independently and manage tasks with minimal supervision. 

  • Must possess exceptional communication skills and the ability to articulate complex technical findings in layman’s terms.  

  • Must have in-depth knowledge of Incident Response, threat actor groups, and lead investigative efforts from start to finish.  

  • Professional certifications such as GCFE, GCFA, GCIH, GNFA, GASF, CISSP, and other relevant certifications are preferred.

Location: Remote

Megan Coleman

Megan is a Squarespace web designer located in Sugar Land, Texas, serving nonprofits, churches and small businesses.

Previous

DFIR Case Manager (Remote)
Next

DFIR Senior Cybersecurity Consultant (Remote)