Job Description (Posting).

Below is JD for DFIR leads/specialist

DFIR Leads/Specialist

• Experience leading cyber incident response for enterprise scale customers.

• Experience handling forensic tool kits like FTK for acquiring and analysing volatile/memory/filesys data.

• Experience with scripting lang(Python, PowerShell)

• Extensive experience in Threat hunting with EDR, NDR, XDR tools.

• Experience doing identity behaviour analytics with identity protection solutions like MS Entra ID, PAM, MFA and identity analytical solutions.

• Good understanding of MITRE ATT&CK framework.

• Experience with Cyber Deception tools, extensive experience in Cloud platforms(Azure and AWS)

• Incident Responder and DFIR certification like GIAC, etc.

Minimum CyberSec exp - 8yrs

(1.) Provides guidance on how his area of capability can resolve an organizational need and actively participates in all phases of the solution life cycle. Design Solutions and best practices to meet clients objective. (2.) Work with clients to identify business challenges and contribute to client deliverables by refining, analyzing, and structuring relevant data (3.) Depending on the work environment, the subject matter expert may lead or be an active participant of a work-group with the need for specialized knowledge. (4.) Meet all agreed-upon turnaround times for deliverables, deliverable reviews, or deliverable sign-off (5.) Understands, articulates and implements best practices related to his area of expertise.