Principal Consultant, Digital Forensic and Incident Response (DFIR) (Remote)

Principal Consultant, Digital Forensic and Incident Response (DFIR) (Remote)Elkridge, Maryland, United StatesAbout Surefire CyberSurefire Cyber is redefining the incident response model by delivering a swifter, stronger response to cyber incidents such as ransomware, email compromise, malware, data theft, and other threats. Our client-centric approach reduces stress and provides clients the confidence needed to prepare, respond, and recover from cyber incidents – and fortify their cyber resilience after an event.Surefire Cyber’s approach and delivery are designed by industry veterans who have worked shoulder-to-shoulder with law firms, insurance carriers, brokers, law enforcement, and impacted organizations in responding to cyber incidents.Job Title : Principal Consultant, Digital Forensics & Incident ResponseLocation : Remote (USA)Role : Full timeCompensation : $100K-$160K annuallyWhat Makes You Stand OutYou are a seasoned cybersecurity professional specializing in Digital Forensics and Incident Response (DFIR), with extensive experience, including client-facing roles, sophisticated forensic analysis, and a proven track record of independently managing investigations of varying sizes and complexities. Committed to continuous learning, you actively seek opportunities to expand your knowledge base, contributing to the team's collective expertise.How You'll Make An ImpactAs a Principal Consultant, you will represent Surefire Cyber as a skilled technical forensic and consulting expert for clients across diverse industries during active incident response engagements. Leveraging your extensive experience and technical skills, you will play a pivotal role in detecting and analyzing intrusions, offering clear guidance to clients navigating high-pressure response situations, and providing after-hours support as needed.Your Role In ActionDemonstrate genuine curiosity, a commitment to continuous learning, and contribute valuable insights to support the team's knowledge growth.Forensically lead incident response engagements, guiding clients through the entire incident response lifecycle from detection to recovery.Conduct advanced forensic analysis to identify the scope and impact of security incidents, including malware analysis and reverse engineering when necessary.Independently manage investigations of varying sizes and complexities such as Business Email Compromises and Ransomware engagements.Provide career development for a Forensic team consisting of 3-4 Consultants / Senior Consultants by investing in their professional development and providing guidance on training opportunities.Identify and articulate attack vectors, threat tactics, and attacker techniques to guide mitigation and prevention efforts.Convey complex forensic findings to technical and non-technical stakeholders clearly and understandably.Provide comprehensive supporting evidence for written reports detailing incident findings and analysis.Review and provide well-thought-out input and guidance to other team members on forensic reports.Collaborate with internal teams, external partners, and clients to refine and document incident response processes and best practices.Spearhead research and development activities to stay up to date with the latest forensic tools, techniques, and methodologies.Contribute to the development of internal processes and support broader organizational initiatives.Provide after-hours (on-call / weekend rotational) support as required to address critical incidents.Your ExpertiseBachelor’s degree in Cybersecurity, Computer Science, Information Technology, or related field, with industry certifications or equivalent professional experience as a Senior or Principal Forensic Consultant.Hold industry certifications or showcase equivalent professional experience as a Principal Consultant, highlighting mastery of Digital Forensics and Incident Response.Previous experience leading forensic workstreams and teams of 3-4 in size on complex investigations.Demonstrate proficiency in utilizing digital forensic artifacts and tools such as ELK, Axiom, Encase, FTK, or comparable industry-standard tools.Showcase experience in the effective use of network analysis and intrusion detection tools in cybersecurity.Possess in-depth knowledge of cybersecurity principles and best practices.Exhibit excellent problem-solving skills and meticulous attention to detail, navigating complex challenges with precision.Demonstrate the ability to work effectively under pressure, manage multiple competing priorities, and meet deadlines.Display exceptional communication skills, ensuring the ability to convey complex technical information clearly.Express eagerness to mentor, share knowledge, and contribute to the team's expertise.Exhibit the capability to provide after-hours (on-call / weekend rotational) support as required.Interview ProcessSubmit interest and application on our website.Preliminary phone interview with the Talent & People Team (approx. 30 minutes).Virtual / Teams Technical interview with DFIR Consultants (approx. 60 minutes).Virtual / Teams interview with Engagement Leads (approx. 60 minutes).Virtual / Teams interview with Chief Delivery Officer (approx. 45 minutes).Virtual / Teams interview with CEO (approx. 30 minutes).Please note that we reserve the right to modify the process at any time.Benefits of Joining Surefire CyberCompetitive compensation plan and total rewards package.Generous paid time off plan and floating holidays.Paid parental leave.Employer-paid premiums for medical, dental, and vision for team members and their dependents.Comprehensive health, vision, dental, 401K matching program, disability, Flexible Spending Accounts (FSA), Health Savings Account (HSA), Life and AD&D benefits.Professional development and career advancement opportunities.Surefire Cyber is an Equal Opportunity Employer that does not discriminate on the basis of any protected group status under applicable law.Apply for this jobFirst Name

• Last Name
• Email
• PhoneResume / CVLinkedIn ProfileAre you legally authorized to work in the United States?
• Will you now or in the future require sponsorship for employment within the US?
• What is your desired compensation range for considering an opportunity with Surefire Cyber?
• Do you have any prior professional work experience in working for a cybersecurity consulting firm?
• Do you have any professional experience with forensic analysis or conducting cybersecurity investigations?
• J-18808-Ljbffr

Salary : $100,000 - $160,000