Incident Response Consultant (f/m/d)

The Job

Does that get you up in the morning?

• Conducting digital forensic investigations and supporting actions in compliance with applicable laws and client policies as part of incident response projects.
• Solving ad hoc programming challenges with pragmatic approaches
• Lead technical projects and initiatives with various stakeholders to derive necessary actions, assess risks and constraints.
• Resolve problems and support cross-organisational efforts
• Make recommendations to overcome future technical obstacles
• Help clients understand complicated technical circumstances
• Document investigation steps and retention, e.g. processes and procedures (collection, processing and analysis)

Skills

What we’re looking for^*

• Completed relevant technical education with at least 5 years of experience in SOC or Incident Response (DFIR) field.
• Experience with:
• Windows and Linux forensics
• File system and storage forensics
• THOR log analysis
• Current IR tools, e.g. ELK, Plaso, Timesketch, GRR, THOR
• Linux (CLI) and scripting
• Experience with Advanced Persistent Threats and their TTPs (especially Lateral Movement)
• Support for ransomware victims
• Remediation consulting, planning & implementation
• Willingness to travel
• German language skills at B2 level and English language skills at C1 level

*Courage to leave a gap: You don’t meet our requirements completely? We are still looking forward to your application!