Company

Coalition, Inc.See more

addressAddressSan Francisco, CA
type Form of workFull-Time
CategoryInformation Technology

Job description

Responsibilities
  • Drive Incident Response engagements to guide our customers through forensic investigations, contain security incidents, and provide guidance on longer term remediation recommendations.
  • Coordinate and guide Incident Response assistance from team members and vendors
  • Investigate customer data breaches and malicious activity leveraging forensics tools; analyze Windows, Linux, and Mac OS X systems to identify Indicators of Compromise (IOCs); examine firewall, web, database, and other log sources to identify evidence of malicious activity.
  • Provide case reporting as required across internal and external audiences with the appropriate technical level of detail for threat researchers and/or business customers.
  • Evaluate customer security programs, technologies, controls, and business environments; recommend and develop enhancements.
  • Provide recommendations on solutions to help customers navigate information security risk.
  • Track emerging security practices and contribute to building internal processes, and our various products.
  • Stay abreast of the current regulatory environment, industry trends and related implications.
Skills and Qualifications
  • Bachelor's Degree in Computer Science, Information Security, Engineering, or other relevant subjects.
  • 5+ years of Incident Response or digital forensics experience.
  • Demonstrated practiced knowledge of the lifecycle of network threats, attacks, attack vectors, and methods of exploitation with a knowledge of intrusion set tactics, techniques, and procedures.
  • Knowledge of TCP/IP Protocols, network assessment and network/security applications, including log and network traffic capture assessment.
  • Experience with Velociraptor, Axiom, FTK, SIFT, Volatility, ELK, WireShark, Plaso, Skadi or other open source forensic/log analysis/network assessment tools.
  • Experience with EDR tools like CrowdStrike Falcon, Carbon Black, Sentinel One, etc.
  • Knowledge of industry standard frameworks - NIST, HIPAA, PCI.
  • Self-motivated; entrepreneurial spirit; comfortable working in a dynamic environment.
  • Strong interactive communication skills (verbal & written).
  • Aptitude to learn technical concepts/terms, and aptitude to guide multiple tasks/projects simultaneously.
  • Experience deploying tools to AWS and familiarity using Cloud based platform for assessment.
Additional Skills and Qualifications
  • Excellent critical thinking skills with the experience to diagnose and troubleshoot technical issues
  • Customer oriented with a strong interest in consumer satisfaction
  • Experience to learn new technologies and concepts and comfortable using command-line interfaces
  • Experience guiding teams of highly motivated analysts
  • Communicate highly technical information to a non-technical audience
  • Experience to handle and work with consumers through high priority scenarios
  • Knowledge in project management
  • Foster a positive work environment and attitude
  • Flexibility with your work schedule in times of urgent response needs
  • Contribute to thought guidance within the DFIR industry

Bonus Points 

  • GCIH, GCIA, GCFA, GCFE, ACE, EnCE, CFCE, CISSP, or similar
  • Security policy, governance, privacy or regulatory experience (e.g., NIST, ISO, HIPAA, PCI).
  • Securing cloud based platforms (Microsoft Azure, Amazon AWS, etc.).
  • Experience with system hardening procedures for Windows, Linux, Unix is helpful. Knowledge and/or experience with Nmap, Nessus, Nexpose, Qualys, Burp, Kali, Metasploit, Meterpreter, or other offensive tools is helpful.
  • Knowledge of scripting for development of security tools and industry frameworks is helpful.
  • SCADA/Control systems network experience is a plus.

Compensation

Our compensation reflects the cost of labor across several US geographic markets. The US base salary for this position ranges from $140,000/year in our lowest geographic market up to $215,000/year in our highest geographic market. Consistent with applicable laws, an employee's pay within this range is based on a number of factors, which include but are not limited to relevant education, skills, job-related knowledge, qualifications, work experience, credentials, and/or geographic location. Your recruiter can share more on target salary for your location during the interview process. Coalition, Inc. reserves the right to modify this range as needed.

Perks

  • 100% medical, dental and vision coverage
  • Flexible PTO policy
  • Annual home office stipend and WeWork access
  • Mental & physical health wellness programs (One Medical, Headspace, Gympass, and more)!
  • Competitive compensation and opportunity for advancement

#LI-Remote

 

Refer code: 8138144. Coalition, Inc. - The previous day - 2024-02-07 01:16

Coalition, Inc.

San Francisco, CA

Share jobs with friends

Related jobs

Incident Response Lead

Digital Forensics Incident Response Consultant, Mid

Booz Allen Hamilton

Canyon, CA

a month ago - seen

Senior Cyber Security Advisor - SOC Incident Response

Prime Healthcare

Ontario, CA

a month ago - seen

Expert Incident Response Analyst

Pacific Gas And Electric Company

Concord, CA

2 months ago - seen

Senior Product Marketing Manager, Unit 42 Incident Response

Palo Alto Networks

Santa Clara, CA

3 months ago - seen

Security Software Engineer, Incident Detection & Response (Senior)

Character.ai

Menlo Park, CA

3 months ago - seen

Senior Incident Response Analyst

Coalition, Inc.

From $115,000 a year

San Francisco, CA

3 months ago - seen

Sr. Security Analyst (Detection and Incident Response)

Spacex

Hawthorne, CA

3 months ago - seen

Incident Response Analyst

Obsidian Security

Palo Alto, CA

3 months ago - seen

Principal Incident Response Analyst

Atlassian

San Francisco, CA

3 months ago - seen

Security Analyst II (Detection and Incident Response)

Spacex

Hawthorne, CA

3 months ago - seen

Senior Security Incident Response Engineer

Amazon

San Francisco, CA

3 months ago - seen

Senior Security Incident Response Engineer

Twitch

San Francisco, CA

3 months ago - seen

Senior Incident Response Manager

Deloitte Us

San Diego, CA

3 months ago - seen

Senior Incident Response Manager

Deloitte Us

Sacramento, CA

3 months ago - seen

Senior Incident Response Manager

Deloitte Us

Fresno, CA

3 months ago - seen

Principal Consultant, Incident Response (Unit 42) - Weekend Schedule

Palo Alto Networks

Santa Clara, CA

4 months ago - seen

Lead Security Incident Response Analyst (Hybrid Preferred)

First American Financial Corporation

Santa Ana, CA

5 months ago - seen

Incident Response and Threat Prevention Engineer III

ServiceTitan

Glendale, CA

5 months ago - seen