Associate Incident Response Consultant - Entry Level 2022

Fireeye Inc. New York , NY 10007

Posted 2 months ago

Company DescriptionSince 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant's approach helps organizations develop more effective and efficient cyber security programs and instillsconfidence in their readiness to defend against and respond to cyber threats.Job Description

A successful Incident Response consultant at Mandiant should possess an understanding of both information security and computer science. They should understand basic concepts such as network security, forensics, and operating system functionality and be able to learn advanced concepts such as malware triage, Tactics, techniques, and procedures (TTPs), working with enterprise security controls and building methodologies to enhance investigation processes. This is not a "press the button" type of job; this career is technical and challenging with opportunities to work in some of the most exciting areas of security consulting on extremely technical and challenging work. You will be building up a foundation in responding to and managing impactful cyber breaches. If you can think like an attacker, stay one step ahead, think well outside the box, or are astute enough to quickly learn these skills, then you're the type of consultant we're looking for.

As a Mandiant consultant, you'll get hands-on experience with complex problems on a daily basis. We help our clients protect their most sensitive and valuable data through comprehensive and real world scenario testing.

To be successful, you will quickly assimilate new information as you face new client environments on a weekly or monthly basis. You will understand all the threat vectors to each environment and properly assess them. You will get to work with some of the best incident responders in the industry, causing you to develop new skills as you progress through your career. Are you up to the challenge?

What You Will Do:

  • Conduct host forensics, network forensics, log analysis, and malware triage in support of incident response investigations

  • Develop comprehensive and accurate reports and presentations for both technical and executive audiences

  • Effectively communicate and discuss findings and strategy with internal stakeholders including leadership and technical team members

  • Recognize and safely utilize attacker tools, tactics, and procedures

  • Develop scripts, tools, or methodologies to enhance Mandiant's incident response processes and capabilities

Qualifications

Minimum Requirements:

  • 1+ years' experience, via internships, classes, projects and similar, in at least two of the following:

  • Windows disk and memory forensics

  • Experience with static and dynamic malware analysis

  • Shell scripting or automation of simple tasks using Perl, Python, or Ruby

  • Reverse engineering malware, data obfuscators, or ciphers

  • Source code review for control flow and security flaws

  • 1+ years exposure and working with tools used for forensic collection and analysis

  • Understanding of network protocols, data on the wire, and covert channels

  • Understanding of Unix/Linux/Mac/Windows operating systems, including bash and PowerShell

  • Must be eligible to work in the US without sponsorship

Preferred Qualifications:

  • Prior experience in a technical security internship

  • Experience in security competitions, CTFs and/or testing platforms such as Hack the Box, TryHackMe, Overthewire, etc

  • Related projects around cybersecurity, programming, etc

  • Strong technical acumen and ability to quickly assimilate new information

  • Time management skills to balance time amount multiple tasks and priorities

  • Ability to successfully interface with clients (internal and external) and manage expectations of others

  • Ability to document and explain technical details in a concise, understandable manner

Additional Information

At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Incident Response Consultant (Remote Northeast Region)

Fireeye Inc.

Posted 1 week ago

VIEW JOBS 1/13/2022 12:00:00 AM 2022-04-13T00:00 Company DescriptionSince 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant's approach helps organizations develop more effective and efficient cyber security programs and instills confidence in their readiness to defend against and respond to cyber threats.Job Description The Mandiant Incident Response team is seeking Consultants with deep understanding of both existing and emerging threat actors, as well as experience identifying rapidly changing tools, tactics and procedures of attackers. You must be able to see the big picture, understanding evolving attacker behavior and motivations, participate and manage large client-facing projects, and help to train/mentor other security consultants. The successful candidate will possess sound business acumen, strong consulting skills, current technical skills and be adept in leading multiple projects under tight deadlines. If you are interested in investigating computer crimes and breaches that make the headlines - and many more that don't, then this opportunity is for you. What You Will Do: * Conduct host forensics, network forensics, log analysis, and malware triage in support of incident response investigations * Utilize Mandiant technology to conduct large-scale investigations and examine endpoint and network-based sources of evidence * Recognize and codify attacker tools, tactics, and procedures in indicators of compromise (IOCs) that can be applied to current and future investigations * Build scripts, tools, or methodologies to enhance Mandiant's incident investigation processes * Develop and present comprehensive and accurate reports, trainings and presentations for both technical and executive audiences * Work with clients security and IT operations teams to implement remediation plans in response to incidents Qualifications Minimum Requirements: * 3+ years of comparable experience in incident response, security operations, or similar * Experience with at least three of the following: * Windows disk and memory forensics * Network Security Monitoring (NSM), network traffic analysis, and log analysis * Unix or Linux disk and memory forensics * Static and dynamic malware analysis * Experience and understanding of enterprise security controls in Active Directory/Windows environments * Experience building scripts, tools, or methodologies to enhance investigation processes * Must be able to work in the US without sponsorship * Ability to travel up to 30%, when travel resumes Desired Qualifications: * Effectively communicating investigative findings and strategies to technical staff, executive leadership, legal counsel, and internal and external clients * Effectively develop documentation and explain technical details in a concise, understandable manner * Strong time management skills to balance time among multiple tasks Additional Information At Mandiant we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. This is a regionally-based role for individuals located within the Northeast region of the United States. Fireeye Inc. New York NY

Associate Incident Response Consultant - Entry Level 2022

Fireeye Inc.