KPMG in Qatar is Looking For A Senior consultant- DFIR
About the job
The individual in this role is required to carry out and lead investigations on a daily basis working alongside other analysts and investigators including making decisions about the appropriate processes to follow in both simple and complex cases.
Responsibilities
Conduct digital forensic investigations on a variety of cyber incidents;
Acquire, process, and analyze digital evidence in accordance with international best practices and forensics standards;
Examine and analyze logs/data from a broad variety of security technologies, such as Antiviruses, IDS/IPS, Firewalls, Switches, VPNs and other security threat data sources
Perform forensic analysis of different artifacts including RAM, packet captures, logs and disk images;
Create and present customer reports to ensure clarity, quality, accuracy and value to the client;
Coordinate with cross-functional case teams to enhance the quality of investigations;
Maintain detailed documentation on cyber incidents;
Maintain evidence management and investigator records to ensure that the continuity and integrity of material is preserved ;
Facilitate cyber exercises and new playbook creation
Conduct research projects into new tools and techniques including working with third party suppliers and internal teams to integrate selected products in order to enhance DFIR processes;
Maintain high standards of deliverable quality with peer review and quality assurance;
Mentor and assist junior staff with technological / forensic issues through the provision of advice and guidance;
Continually improve on one’s own skills by acquiring knowledge to become an expert matter specialist in one or more specific areas of expertise;
Provide regular briefings and updates to other members DFIR team.
Qualifications
Bachelor's or master’s degree in Computer Science, Information Systems, Engineering or related field;
Strong background in the information and cybersecurity domain;
Strong ethical values and operate with the highest levels of integrity in the marketplace;
Ability to execute in a fast paced, high demand environment while balancing multiple priorities;
Passion to learn, as well as a dedication and self-driven desire to keep abreast of latest cybersecurity threats and hacking techniques;
Strong verbal, written, and interpersonal communication skills with the ability to collaborate well with others;
Flexibility in adapting to shifts and extended hours, as required.
Certifications
Lead Cybersecurity qualification, such as CISSP, CISA, CISM, ISO, GCIA, GCIH, GCFA, GCFE, GREM, OSCP or other related certification would be preferable.
Tools
Lead Cybersecurity qualification, such as CISSP, CISA, CISM, ISO, GCIA, GCIH, GCFA, GCFE, GREM, OSCP or other related certification would be preferable.
إرسال تعليق