Role
We are seeking a Manager level candidate with Incident Response and project management experience gained in professional services.
Responsibilities
- Respond to cyber incidents reported by clients
- Manage cyber incident responses and incident response teams
- Lead cyber investigations
- Understand incident analysis workflow and tools
- Perform quality control reviews of team members’ deliverables and work processes
- Perform project management and engagement risk management activities
- Support financial management of individual projects and cyber incident response team
- Manage time, tasks and resources to meet internal and external deadlines
- Lead client communications, both written and oral, throughout the lifecycle of the project
- Be available to travel, including occasional international travel, and be on-call 1 in 4 weekends each month
Requirements
- Degree in Computer Science or Cyber Security, or related equivalent
- Experience at Manager level within management consulting and the Incident Response field is essential
- Adequate communication skills to interact with high level management and C‑suite clients on a frequent basis
- Skilled in setting up new engagements to support clients in responding to incidents
- Capable of managing both short‑term and long‑term projects
- Understanding of engagement risk
- Experience responding to incidents including ransomware, ATP attacks, BEC, Cloud, etc.
- Experience managing teams and performance management of individuals
- Ability to identify opportunities within existing and potential clients
- Experience working with non‑Windows systems such as Linux, Unix, Mac
- Scripting or programming experience (specifically Python, C#, VBA, or PowerShell)
- Experience working in a consultancy environment
- Exposure to AI technologies, techniques and approaches within the DFIR domain
- Strong desire to work in a collaborative team environment to achieve common goals
- Exceptional organisational skills
- Passion for Cyber Incident Response and continuous improvement in expertise
- Ability to correlate events from multiple sources to create timeline analysis across endpoints of an incident
- Understanding of how to leverage existing security applications and appliances to address a compromise or malware/ransomware outbreak
- Experience working with enterprise networks
- Understanding of mitigation and clean‑up strategies
- Proficient in log analysis of multiple types
- Ability to analyse complex network packet captures
- Understanding of memory, how to capture, data available and analysis skills
- Understanding of how to take malware apart from a virtual machine, dynamic malware analysis, and reverse engineering perspective
Ankura is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against based on disability. Equal Employment Opportunity Posters, if you have a disability and believe you need a reasonable accommodation to search for a job opening, submit an online application, or participate in an interview/assessment, please email accommodations@ankura.com or call toll-free +1.312-583-2122.
#J-18808-Ljbffr…