Digital Forensics and Incident Response Expert

3 days ago

Canberra, ACT, Australia beBeeCybersecurity Full time $85,834 - $120,303
Incident Response Specialist

The role will oversee both our response to incidents as and when they occur, but also the growth and development of the capability to ensure it remains equipped and prepared to respond to incidents whenever and wherever they occur.

  • Leading the investigation of cyber-attacks against customers as part of a global Incident Response team with a focus on Australia-based customers.
  • Monitoring SIEM platforms for security concerns and providing tuning based on system performance and developing new detection content based on changes in the threat environment.
  • Developing tools tradecraft playbooks and other materiel to support the response to and investigation of cyber security incidents.
  • Supporting the triage and containment of cyber security incidents as and when they occur and supporting recovery and remediation efforts to restore systems to operational states.
  • Conducting forensic analysis of Windows Linux and macOS devices gathering and performing analysis of relevant log files such as operating system firewall proxy and DNS logs.
  • Providing assessment and analysis of attacker tools techniques and procedures of different actors from hacktivist to criminal to nation state.
  • Supervising and mentoring junior security consultants and supporting the development of their incident response skillsets.
  • Help grow and evolve delivery capability by documenting delivery processes feeding back lessons learned and working with the wider team in establishing best practices and repeatable processes.
Key Skills
  • Demonstrable experience in leading and supporting the response and investigation of cyber security incidents across a range of system and technology types.
  • Experience working with Splunk including platform configuration event review and detection content development.
  • Experience using forensic tools such as EnCase Axiom and Cellebrite UFED and their use in gathering and preserving digital forensic artefacts to facilitate or support investigative activities.
  • Awareness of EDR tools such as Crowdstrike Carbon Black Microsoft Defender for Endpoint and Cylance.
  • Ability to write Incident Response reports concisely and proficiently and use (or generate) graphics to illustrate scenarios or datasets.
  • Detailed knowledge of the cyber security product landscape including familiarity with Azure and Amazon Web Services.
  • Experience in developing maintaining and exercising incident response plans playbooks and other tradecraft.
  • Familiarity with the Australian Government Information Security Manual ISM.
  • Experience working with large groups of varied stakeholders coordinating resources and achieving shared goals.
  • Experience with working with end users and clients offering advice guidance and thought leadership ability to communicate complicated technical challenges in business language for a range of stakeholders from IT teams to C-level executives.
  • Excellent verbal and written communication and client-facing skills including Microsoft Office suite use Word/Excel/PowerPoint/Visio ensuring a clear and professional quality of written materials.
  • Time management and organizational skills to independently manage multiple delivery projects concurrently.
  • Detail-oriented approach.
  • Self-starter with ability to identify problems early and come up with solutions using own initiative.
  • Familiarity with the threat landscape and knowledge of threat actors and campaigns.

  • Incident Response Specialist

    3 weeks ago

    Canberra, ACT, Australia BAE Systems Digital Intelligence Full time

    Join to apply for the Incident Response Specialist role at BAE Systems Digital Intelligence8 hours ago Be among the first 25 applicantsJoin to apply for the Incident Response Specialist role at BAE Systems Digital IntelligenceBAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries...

  • Chief Incident Response Officer

    5 days ago

    Canberra, ACT, Australia beBeeCyberSecurity Full time $120,303 - $135,701

    Senior Cyber Security Incident Manager PositionWe are seeking an experienced and skilled Cyber Security Incident Response Expert to oversee the investigation of cyber-attacks against our customers as part of the global Incident Response team.Key Responsibilities:Lead and coordinate the investigation of complex cyber security incidents, ensuring timely and...

  • Incident Response Specialist

    1 day ago

    Canberra, ACT, Australia beBeeCyberSecurity Full time $100,000 - $120,000

    Job Title: Cyber Security Incident ResponderWe are seeking a talented and experienced individual to join our security consulting team as a Cyber Security Incident Responder.The role will be responsible for supporting our incident response capabilities in-country, overseeing both our response to incidents and the growth and development of the capability to...

  • Security Expert

    2 days ago

    Canberra, ACT, Australia beBeeThreat Full time $90,000 - $120,000

    CrowdStrike is a global leader in cybersecurity that protects the people, processes, and technologies driving modern organizations.About The RoleThis Security Expert will sit at the critical intersection between CrowdStrike's industry-leading Falcon platform and diverse customer base.You'll work directly with security teams to identify gaps in detection and...

  • Cyber Security Incident Investigator

    5 days ago

    Canberra, ACT, Australia beBeeInvestigator Full time $120,000 - $150,000

    Incident Response SpecialistThis role is an opportunity to join a team that specializes in the response and investigation of cyber security incidents. The successful candidate will be responsible for leading the investigation of cyber-attacks against our customers as part of the global Incident Response team, with a particular focus on Australia-based...

  • Digital Security Expert Opportunities

    4 days ago

    Canberra, ACT, Australia beBeeCybersecurity Full time $90,000 - $130,000

    Job Description:Fujitsu is a global leader in technology and business solutions, dedicated to using innovation to create happier lives and transform organizations.We are seeking talented individuals to join our dynamic team across Australia and New Zealand. We're building a pipeline of exceptional professionals to support our growing division and deliver...

  • Strategic Forensic Capability Manager

    18 hours ago

    Canberra, ACT, Australia beBeeLeadership Full time $118,673 - $127,101

    Forensic Leadership PositionThe Australian Federal Police is seeking a highly skilled Forensic Operational Capability Team Leader to join their team.The successful candidate will be responsible for providing strategic and operational leadership to enhance forensic capabilities across disciplines, analysing operational delivery to inform portfolio uplift,...

  • Incident Response Specialist

    5 days ago

    Canberra, ACT, Australia beBeeCyberSecurity Full time $150,000 - $220,000

    Cyber Security Incident LeadJob Summary:We are seeking a Cyber Security Incident Lead to join our team.The ideal candidate will possess strong analytical and problem-solving skills, as well as excellent communication and collaboration abilities.This role is responsible for analyzing and resolving complex security incidents.Main Responsibilities:Analyzing and...

  • Chief Information Security Officer

    5 days ago

    Canberra, ACT, Australia beBeeCybersecurity Full time $86,004 - $109,061

    Key ResponsibilitiesOversee and coordinate threat detection, response, and incident management processesLead, mentor, and develop junior security professionals within the teamConduct advanced threat hunting, forensic analysis, and complex cyber investigationsRecommend and implement cybersecurity solutions to enhance operational capabilityAs a Cyber Security...

  • Incident Response Professional

    5 days ago

    Canberra, ACT, Australia beBeePsychological Full time $90,000 - $120,000

    Critical Incident Response SpecialistWe are seeking a skilled and experienced professional to provide critical incident response services using psychological first aid and other trauma-specific interventions.This role involves supporting clients during incidents or organisational change, informing organisations of themes, recommendations, or internal process...