
Senior Investigator, Dfir
7 days ago
Gridware Sydney, New South Wales, AustraliaBecome a part of Gridware's DFIR team and help investigate and respond to cybersecurity incidents impacting Australian organisations.About the role:Your role will be communicating with clients during and after a cybersecurity incident.
You'll be required to assess the extent of the incident, provide expert advice, assist with containment, collect and lead the analysis of relevant evidence and artefacts (e.g.: log files, disk images, malware samples, phishing emails etc...), determine root cause, and provide high quality post-incident forensic reports.
The bulk of the incidents that you will be investigating include: Business Email Compromises (BECs), ransomware attacks and web application/server breaches, however you will occasionally be dealing with insider threats, expert witness requests and website defacements.You will be reporting directly to the Chief Executive Officer, you'll be working with a small team of Digital Forensics & Incident Response Analysts, and occasionally interns, with the expectation that as a senior analyst, you'll be coordinating and managing some of the team's resources and maintaining a general oversight of all active incidents.Key Responsibilities:Leading incident engagements: Coordinating the cyber incident response for external clients, including containment, monitoring and forensic data collection efforts.Collect and analyse all available evidence and provide a written forensic report for our clients.Investigating and coordinating multiple and competing complex incidents at any given time.Monitor organisations' environments using our XDR and SIEM platforms.Peer review reports written by other analysts.Provide clients with advice on improving their cybersecurity posture (post-incident).
If this role sounds like it suits your skills, we want to hear from you today
About you:Minimum 2-3 years of experience in incident response/digital forensics.Passion for information systems and cyber security.Good communication, documentation, and interpersonal skills.Proven experience in working both autonomously and as part of a team.Desire to be part of a small but highly-skilled team.Bachelor's degree or other relevant tertiary education or industry experience in cyber security or information technology field.Be willing to undertake occasional travel to client sites, or interstate for training, conferences etc..
.Key Competencies / Qualifications:Adept at analysing artefacts from Microsoft Windows-based workstations and servers.
(e.g.: Registry entries, AmCache/Shimcache, Jump lists).
Experience with commercial digital forensics tools (Magnet AXIOM, X-Ways Forensics, etc...).
Experience with open source digital forensics tools (KAPE, Eric Zimmerman's tools, etc...).
Understanding of cloud environments; Extracting and analysing logs from Microsoft 365 and Google Workspace.Understanding of file systems, file signatures and hashing.Fundamental understanding of networking (TCP/IP, DNS, DHCP, port forwarding etc...).
Advanced verbal and written communication skills; Ability to clearly communicate with clients (including non-technical audiences and C-level personnel) and prepare detailed technical/forensic reports.Adept at Business Email Compromise (BEC) and Ransomware investigations.High Desirable Competencies / Attributes:Experience in threat actor/ransom negotiations and sanction checks.Ability and willingness to mentor junior analysts and interns.Experience with programming or scripting languages (e.g.: Python, SQL or PowerShell).
Knowledge of threat actor tactics, techniques, and procedures (TTPs).
Experience with Linux and/or Apple macOS-based systems.Current holder of (or ability to obtain) a Negative Vetting 2 (NV2) Australian security clearance.What Gridware can offer you:We hire candidates based on experience, skills and alignment with Gridware's culture and values.
Gridware is a Culturally and Linguistically Diverse company, and we are committing to maintaining an environment of Equal Employment Opportunity.
We are a diverse, equitable and inclusive workplace, that aligns with our Great Place to Work certifications.Gridware is a Great Place to Work certified and Top 10 Best Workplace in Australia 2023 and 2024.High growth company means you will play a pivotal role in the Digital Forensics & Incident Response (DFIR) team.Gain experience and exposure to investigating sophisticated cyber breaches.Learning and development programs to help you further your career in cybersecurity.Flexible, remote-working environment.Mental health training and leave.The opportunity to join Australia's first Carbon Neutral cyber security company.Seniority levelMid-Senior levelEmployment typeFull-timeJob functionOther, Information Technology, and Management
#J-18808-Ljbffr
-
Senior Investigator, DFIR
2 weeks ago
Sydney, New South Wales, Australia Gridware Full timeGridware Sydney, New South Wales, AustraliaBecome a part of Gridware's DFIR team and help investigate and respond to cybersecurity incidents impacting Australian organisations.About the role:Your role will be communicating with clients during and after a cybersecurity incident. You'll be required to assess the extent of the incident, provide expert advice,...
-
Lead Digital Forensics Investigator
4 days ago
Sydney, New South Wales, Australia beBeeDigitalForensics Full time US$175,000 - US$225,000Helping financial lives get better through connections is our purpose. We grow responsibly, delivering for clients, teams, communities and shareholders every day.Teamwork and flexibility are valued, offering a multi-faceted approach depending on the role.Working here offers opportunities to learn, grow and make an impact.As a key member of our team, you will...
-
Senior Cybersecurity Specialist
1 week ago
Sydney, New South Wales, Australia beBeeDigitalForensics Full time $120,000 - $175,000Job Overview:We are seeking a skilled Digital Forensics Investigator to join our team. As an experienced professional in this field, you will play a crucial role in helping us achieve our goal of making financial lives better through the power of every connection.In this role, you will be responsible for utilizing your expertise in Digital Forensics and...
-
Digital Forensics
1 week ago
Sydney, New South Wales, Australia Gridware Full timeOverviewDFIR Manager – Gridware, Sydney, New South Wales, AustraliaThe RoleAbout GridwareGridware is one of Australia's leading sovereign cybersecurity firms, trusted by businesses to respond to cyber threats with speed, clarity, and precision. We pride ourselves on combining deep technical expertise with a people-first approach, helping clients defend...
-
Digital Forensics
2 weeks ago
Sydney, New South Wales, Australia Gridware Full timeOverviewDFIR Manager – Gridware, Sydney, New South Wales, AustraliaThe RoleAbout GridwareGridware is one of Australia's leading sovereign cybersecurity firms, trusted by businesses to respond to cyber threats with speed, clarity, and precision. We pride ourselves on combining deep technical expertise with a people-first approach, helping clients defend...
-
Digital Forensics
2 weeks ago
Sydney, New South Wales, Australia Gridware Full timeOverviewDFIR Manager – Gridware, Sydney, New South Wales, AustraliaThe RoleAbout GridwareGridware is one of Australia's leading sovereign cybersecurity firms, trusted by businesses to respond to cyber threats with speed, clarity, and precision. We pride ourselves on combining deep technical expertise with a people-first approach, helping clients defend...
-
Assistant Vice President
5 days ago
Sydney, New South Wales, Australia Bank of America Full timeJob Description:At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day.We strive to be a great place to work for our teammates worldwide. We are committed...
-
Senior Cybersecurity Specialist
1 week ago
Sydney, New South Wales, Australia beBeeCybersecurity Full time $225,000About This Senior Cybersecurity RoleWe are seeking a Principal Consultant, Threat Hunting to join our cybersecurity operations team. This senior-level position involves acting as a technical specialist, escalation point, and mentor while driving proactive cyber defence strategies.Key Responsibilities:Provide technical leadership as an escalation point for...
-
Digital Forensics
2 weeks ago
Sydney, New South Wales, Australia Gridware Full time $90,000 - $120,000 per yearAbout GridwareGridware is one of Australia's leading sovereign cybersecurity firms, trusted by businesses to respond to cyber threats with speed, clarity, and precision. We pride ourselves on combining deep technical expertise with a people-first approach, helping clients defend against today's most complex attacks.Our Digital Forensics & Incident Response...
-
Senior Investigator
7 days ago
Sydney, New South Wales, Australia beBeeInvestigator Full time $123,702 - $136,900Job Opportunity: Senior InvestigatorAbout the RoleThe position of Senior Investigator is available in a fast-paced organisation. The successful candidate will lead investigations and projects, developing and implementing plans to achieve compliance and enforcement goals.Main ResponsibilitiesDevelop investigation/project plans, allocate resources, and monitor...