Senior Digital Forensics, Incident Response Analyst
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Senior DFIR Analyst leading complex incident investigations at Cyber Advisors. Responsible for coordinating response actions and mentoring junior DFIR Analysts.
Responsibilities:
- Lead complex DFIR investigations end-to-end: scope, evidence strategy, analysis, and findings validation across endpoint, identity, cloud, and network telemetry.
- Perform advanced forensic analysis (disk, memory, cloud artifacts) including timeline construction, persistence discovery, credential access signals, and data access/exfiltration assessment.
- Conduct root cause analysis to determine the TTPs (Tactics, Techniques, and Procedures) used by threat actors and propose measures to prevent similar incidents in the future.
- Serve as incident lead or deputy lead for major incidents: coordinate containment/eradication/recovery with stakeholders and ensure evidence is preserved while response actions proceed.
- Produce high-quality incident reports: executive summary, technical narrative, timeline, root cause, and prioritized remediation recommendations.
- Own and improve DFIR playbooks, evidence collection checklists, and case documentation standards; conduct quality reviews and coaching.
- Design/implement analysis automation (scripts, parsers, Velociraptor/KAPE artifacts, SOAR integrations) to reduce time-to-triage and improve consistency.
- Support threat hunting and detection improvement by translating DFIR findings and Offensive Security TTPs into detection opportunities and telemetry requirements.
- Mentor DFIR Analysts through case reviews, technical sessions, and training plans; help build specialization (cloud forensics, memory, network, malware triage).
Requirements:
- 4–7+ years of experience in DFIR, incident response, threat detection, or digital forensics roles.
- Demonstrated experience leading complex investigations and coordinating response actions with technical and business stakeholders.
- Strong proficiency with SIEM/EDR platforms and forensic tooling; ability to acquire, analyze, and interpret evidence across systems.
- Strong knowledge of incident handling lifecycle and forensic best practices, including chain-of-custody and defensible reporting.
- Strong analytical and problem-solving skills with the ability to handle complex, multi-layered incidents.
- Excellent written and verbal communication skills; ability to brief technical and non-technical audiences.
- Ability to lead and mentor junior team members, fostering a culture of knowledge sharing and collaboration.
- Relevant certifications (one or more): GCIH, GCFA, GCFE, GNFA, CCDL2, SBTL2, CISSP (or equivalent).
Benefits:
- PTO and 8 Paid Holidays.
- Employer-paid Health and Dental Insurance for CA employees.
- Great opportunities for career advancement.
- 401k with employer matching.
- Disability and Life Insurance.
Similar Jobs
Quality Analyst – Cybersource
Quality Analyst responsible for AI-enabled quality assurance at Visa. Analyzing quality data, conducting reviews, and influencing operational change within the organization.
Registered Nurse, Remote Patient Monitoring Analyst
Registered Nurse monitoring remote patient data and engaging with patients for Guidehealth. Utilizing clinical judgment and collaboration to prevent clinical deterioration.
Senior RCM Analyst
Senior RCM Analyst at Belle managing medical claims and revenue cycle functions with a focus on expansion and operational efficiency. Collaborating cross-functionally with Finance and Practice Operations teams.
Analyst I, Certification
Analyst responsible for analyzing and classifying certification applicants for LegitScript. Utilizing big data, open-source intelligence, and best practices to ensure compliance and safety.
Functional Analyst
Jenzabar Functional Analyst providing functional support for Jenzabar systems at higher education institutions. Ensuring effective use of the platform through implementation and training.
Change Analyst
Change Analyst managing end-to-end Change Management process for RS Group. Coordinate change activities, ensure adherence to best practices, and engage stakeholders effectively.
Quality Clinical Evaluator – Analyst
Clinical Evaluator coordinating quality improvement for clinical personnel at The Cigna Group. Ensuring compliance and excellent customer service in a remote work environment.
Senior Business Project Analyst, MRC Manual Pricing
Senior Analyst at Cigna Healthcare performing manual pricing and analyzing complex claims for cost containment initiatives. Collaborating to ensure accuracy and compliance with pricing regulations.
CMMS Analyst
CMMS Analyst managing computerized maintenance management systems and facility services reporting at JLL. Ensure system integrity, user training, and maintenance process optimization.
Senior Analyst – Facilities Coordinator
Senior Analyst providing facility management services to JLL clients worldwide. Evaluating client needs and ensuring excellent customer satisfaction through proactive outreach and service solutions.
Data Quality Analyst
Data Quality Analyst responsible for maintaining data accuracy and quality for e-commerce platform. Collaborates with teams to resolve data issues and improve processes.
Implementation Analyst
Implementation Analyst supporting August platform rollout for senior living operators. Responsible for system configuration, data preparation, training, and process improvement.
Analista de Atendimento, Foco em DP
Providing technical support to clients in payroll operations at Contajá. Engaging with clients via chat for inquiries regarding payroll processes and calculations.
Client Support Analyst, Accounting
Provide accounting-focused client support and guidance on reconciliations, trial balances, and statutory/ancillary filings. Log and follow up on requests, identify inconsistencies, and collaborate to ensure accurate financial reporting.
Trust and Safety Analyst
Trust and Safety Analyst supporting compliance monitoring and regulatory analysis for a digital content company. Maintaining standards and ensuring up-to-date knowledge of regulations.
Data Delivery Analyst
Data Delivery Analyst translating enterprise strategy into tactical data features for a healthcare data organization. Collaborating with BAs and managing data integration and quality projects in a fully remote role.
Business Requirements Analyst II
Mid-level Business Requirements Analyst (remote) focused on eliciting and documenting functional and technical requirements. Acts as the bridge between business stakeholders and development teams, supporting testing and incident analysis.
Cloud Analyst
Cloud Analyst supporting Cloud environments ensuring high availability and incident management at Keyrus. Collaborating with N1, N2, and N3 teams for operational excellence and improvements.
Senior Impact Analyst
Senior Analyst at Enveritas improving smallholder farmers' outcomes through data-driven interventions across farming communities. Engaging in research, program design, and impact assessment for sustainability initiatives.
Senior Business Analytics Analyst
Business Analytics Senior Analyst serving as a strategic analytics partner improving healthcare outcomes through data. Utilizing advanced analytics, AI, and clinical data for informed decision-making.