Job Title: Senior Consultant, Digital Forensics and Incident Response (DFIR)

Location:  Remote, USA

Compensation: $90K-$120K

What Makes You Stand Out

You are an experienced cybersecurity professional with advanced knowledge in the specialty of Digital Forensics and Incident Response (DFIR).  You have former client-facing, forensic analysis, and investigation experience. Your passion lies in identifying, analyzing, and mitigating security incidents, demonstrating a solid grasp of the ever-evolving threat landscape.

You have a proven track record of conducting forensic analysis and have worked independently on small to medium investigations. You approach investigations with analytical proficiency, and an experienced perspective, while consistently yielding high quality results.

How You’ll Make An Impact

Surefire Cyber is actively seeking a Senior Consultant for our dynamic Digital Forensics and Incident Response team. This opportunity is a full-time position remote opportunity on our team that embraces a collaborative environment, a competitive salary, equity in the company, excellent benefits, and fosters continuous professional development. 

In this role, you will represent Surefire Cyber as a skilled technical and consulting resource for clients across diverse industries during active incident response engagements. You will leverage your experience and technical skills to detect and analyze intrusions and offer guidance to clients to navigate through high-pressure response situations with clear communication and after-hours support as needed.

Your Role In Action

• Demonstrate a commitment to learning and contribute valuable insights, actively seeking guidance when necessary.
• Contribute to client-facing incident response engagements, working with other team members to guide clients through the entire incident response lifecycle from detection to recovery.
• Conduct advanced forensic analysis to precisely identify the scope and impact of security incidents, including malware analysis and reverse engineering when necessary.
• Lead the forensic investigations on small to medium investigations such as Business Email Compromises and Ransomware engagements, leveraging the expertise of Engagement Leads and Principal Consultants on advanced and more complex investigations.
• Provide mentorship and assist less experienced team members by sharing your knowledge and expertise to help others grow in their roles.
• Identify, articulate, and explain attack vectors, threat tactics, and attacker techniques to guide mitigation and prevention efforts.
• Convey complex forensic findings to technical and non-technical stakeholders clearly and understandably.
• Provide comprehensive supporting evidence for written reports detailing incident findings, and analysis.
• Collaborate with internal teams, external partners, and clients to refine and document incident response processes and best practices.
• Engage in research and development activities to stay up to date with the latest forensic tools, techniques, and methodologies.
• Contribute to the development of internal processes and support broader organizational initiatives.
• Provide after-hours (on-call/weekend rotational) support as required to address critical incidents and maintain continuous coverage.

Your Expertise

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, related degree, industry certifications, or former professional experience as a Senior Forensic Consultant, Senior Cybersecurity Consultant, or as a Senior Incident Responder.
• Proficiency in common digital forensic artifacts and tools such as ELK, Axiom, Encase, FTK (Forensic Toolkit), Open-Source, or other comparable tools.
• Professional experience with network analysis and intrusion detection tools.
• In-depth knowledge of cybersecurity principles and best practices.
• Excellent problem-solving skills and attention to detail.
• Ability to work effectively under pressure, manage multiple competing priorities, and meet tight deadlines.
• Exceptional communication skills, both written and verbal. 
• Eagerness to mentor, share, and expand knowledgebase. 
• Ability to provide after-hours (on-call/weekend rotational) support as required to address critical incidents and maintain continuous coverage.

Expertise in all these areas is not required, but you should be excited by the opportunity to learn new things and comfortable with working with other team members to expand your knowledge base and experience. We at Surefire Cyber invite you to apply even if you do not feel you have mastery in all the requirements listed on the job description and welcome a further discussion. 

Interview Process

• Submit Application on our website
• Preliminary phone interview with the People Team (approx., 30 minutes)
• Technical Virtual interview with Forensic Team (approx., 60 minutes)
• Virtual interview with Engagement Leads (approx., 45 minutes)
• Virtual interview with Chief Delivery Officer (approx., 45 minutes)
• Virtual interview with CEO (approx., 30 minutes)

  #LI-Remote