Dfir Lead
4 weeks ago
Our Client
Leading US based IT MNC
Your Responsibilities
- Work as a part of the SOC team
- Operate as a first point of escalation for Tier 2.
- Hunt for suspicious anomalous activity based on data alerts or data outputs from various toolsets.
- Review and build new operational processes and procedures.
- Drive containment strategy during data loss or breach events.
- Triage and resolve advanced vector attacks such as botnets and advanced persistent threats (APTs).
- Work directly with data asset owners and business response plan owners during low and medium severity incidents.
- Provide advice on the tuning of Security controls like proxy policy, in-line malware tools based on threat feeds, trust and reputation data, incidents, or vulnerabilities, and exploits of downstream systems.
- Develop SOC use cases, provide tuning recommendations to administrators based on findings during investigations or threat information reviews.
- Perform Threat hunting based on threat intelligence feeds
- Lead response actions for incidents where CIRT is not required to intervene (low/medium priority).
- Perform administrative tasks per management request (ad hoc reports/ trainings).
Your Qualifications
- Graduate degree or equivalent
- 5+ years of minimum experience in Information security
- 2+ years of prior experience in a similar position
- CEH certified
- SEC511: Continuous Monitoring and Security Operations training
- SANS SEC504: Hacker tools, Techniques, Exploits, and Incident Handling training
- SANS FOR500 series training
- Advanced Security Essentials - SEC501 (optional GCED certification)
- Perimeter Protection In-Depth - SEC502 (optional GCFW certification)
Halian Group
With over 20 years of experience, we have come to understand that innovation is the only way to provide agile, practical solutions that transform businesses and careers.
Our tech-talent and smart services help you to realise tomorrow’s potential. Discover the amazing things possible when you bring the right people and the right technologies together.
-
Senior Dfir Analyst
3 weeks ago
Doha, Qatar Charterhouse Full timeThe Role Charterhouse working with an international consultancy firm who is looking to hire a skilled and experienced Senior Digital Forensics and Incident Response (DFIR) Analyst to work in close collaboration with the Cyber Security Team in there Qatar Office. The key accountabilities in this role include; conducting digital forensics investigations...
-
Senior consultant- DFIR
2 weeks ago
Doha, Baladīyat ad Dawḩah, Qatar lxbfYeaa Full timeThe individual in this role is required to carry out and lead investigations on a daily basis, working alongside other analysts and investigators, including making decisions about the appropriate processes to follow in both simple and complex cases.ResponsibilitiesConduct digital forensic investigations on a variety of cyber incidents;Acquire, process, and...
-
Doha, Qatar Palo Alto Networks Full timeCompany Description At Palo Alto Networks®, everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. We have the vision of a world where each day is safer and more secure than the one before. These aren’t easy goals to accomplish - but we’re not here for easy. We’re here for better....
-
Doha, Qatar Palo Alto Networks Full timeCompany Description **Our Mission** At Palo Alto Networks® everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. We have the vision of a world where each day is safer and more secure than the one before. These aren’t easy goals to accomplish - but we’re not here for easy. We’re...
-
Doha, Qatar Palo Alto Networks Full timeCompany Description** Our Mission** At Palo Alto Networks® everything starts and ends with our mission: Being the cybersecurity partner of choice, protecting our digital way of life. We have the vision of a world where each day is safer and more secure than the one before. These aren’t easy goals to accomplish - but we’re not here for easy. We’re...
