Digital Forensics Incident Responder (JD#10973)

Job Summary

We are looking for enthusiastic and passionate candidate to join the cyber security team as a Digital Forensics Incident Responder (DFIR).

Mandatory Skill-set

• Diploma or Degree in Computer Science, Engineering, Information Systems, Information Security;
• Must have 5 years of work experience in Information Security focusing on identifying remediating and investigation of Cyber Security Incidents or Digital Forensics;
• Experience in forensic tool kits such as Magnet AXIOM, Encase, X-Ways, FTK or Autopsy in imaging, collection, transformation, analysing, gathering, examination, investigation different kinds of digital evidences;
• Good understanding of Malware, Intrusion Detection Systems and SIEM platforms;
• Proactive and self-motivated team player with a strong sense of responsibility and accountability;
• Keen learner and strong passion in self-development and cyber security research;
• Strong problem solving and analytical skills with ability to work in fast paced environment;
• Good written and communication skills.

Desired Skill-set

• Certifications, including GIAC GCFA, GCFE, GCIH or related certifications;
• Experience working in a Security Operation Centre (SOC).

Responsibilities

• Part of the Cyber Forensic team to provide forensic support to manage Digital Forensic and Incident Reponses and ensure smooth operations of daily operations;
• Responsible to monitor, triage cyber threat information from news, incoming feeds and logs;
• Assist and support Digital Forensics Incident Responder Analyst to investigate any malware out-rage, security incidents or root-cause analysis;
• Investigate cybersecurity incidents that may involve digital forensic analysis, malware analysis and log analysis;
• Perform cybersecurity threats and vulnerabilities assessment;
• Provide strong technical guidance on investigation and threat assessments;
• Track and manage incidents and handle end-to-end resolution starting from detection (opening) to closure;
• Adhere to the Standard Operation Procedures (SOP) within the security operations; regularly review them to improve the efficiency;
• Maintain situational awareness and keep current with cyber security news and threat actor Tactics, Techniques and Procedures (TTPs);
• Prepare and review incident reports to update stakeholders and report potential findings from both technical and business perspective.

Should you be interested in this career opportunity, please send in your updated resume to [email protected] at the earliest.

When you apply, you voluntarily consent to the disclosure, collection and use of your personal data for employment/recruitment and related purposes in accordance with the SCIENTE Group Privacy Policy, a copy of which is published at SCIENTE’s website (https://www.sciente.com/privacy-policy).

Confidentiality is assured, and only shortlisted candidates will be notified for interviews.

EA Licence No. 07C5639