Senior/Principal Incident Response Consultant - Secureworks - EMEA
Primary Location: Remote - United Kingdom (London-Thames Valley)
Remote - Denmark; Remote - Germany (All Other); Remote - Netherlands; Remote - Norway; Remote - Sweden
Senior/Principal Incident Response Consultant
Secureworks® (NASDAQ: SCWX) a global cybersecurity leader, enables our customers and partners to outpace and outmanoeuvre adversaries with more precision, so they can rapidly adapt and respond to market forces to meet their business needs. With a unique combination of cloud-native, SaaS security platform and intelligence-driven security solutions, informed by 20+ years of threat intelligence and research, no other security platform is grounded and informed with this much real-world experience.www.secureworks.com
We enjoy competitive compensation and benefits packages, and reward and recognize our employees for exceptional results. A constant focus on continued learning and growth keeps our team members engaged and excited about “what’s next.” We offer flexible work options when available and emphasize the importance of work-life balance. We know that when our people are rewarded, recognized, and rejuvenated, we win as a team.
A senior level position working with our clients to support them in managing cyber security incidents. This work includes both preparing to effectively handle computer security incidents as well as responding to them. Helping clients prepare for incidents includes threat hunting, developing playbooks, delivering training, and conducting exercises to test response plans. Responding includes helping clients manage technical and non-technical aspects of response to complex, large-scale incidents, conducting detailed forensic analysis, identify the magnitude, develop timelines of activity, and develop remediation recommendations.
Serve as subject matter expert in cyber incident response and digital forensics
Perform complex incident response technical analysis and develop technical conclusions based on analysis
Document findings, develop incident response remediation recommendations and present both orally and in written reports for clients
Conduct assessments of client readiness to respond to incidents, including designing and delivering incident response exercises to test client incident response plans
Proactively hunt for threats in client networks to uncover previously unidentified threats
Minimum of 5 years of DFIR investigative experience
Comfortable with a 100% remote workplace. This position is expected to work from home.
Strong technical communication skills (oral and written) in English including experience briefing executive management and desire to work with clients to solve complex security issues.
Ability to travel on short notice, as required, up to 30% of the time.
Minimum of 3 years of external (client-facing) consulting experience.
Sysadmin-level familiarity with Active Directory.
Sysadmin-level familiarity with popular cloud technologies (AWS, Azure, GCP).
The ideal candidate will find mentoring others fulfilling.
Malware analysis experience
Industry certifications such as GREM, GCFA, GNFA, GCFE, CCIM etc
Familiar with tactics, techniques, and procedures commonly employed by threat actors, and their motivations
Why work with Secureworks?
Life at Secureworks means collaborating with dedicated professionals with a passion for technology. When we see something that could be improved, we get to work inventing the solution. Our people demonstrate our winning culture through positive and meaningful relationships. We invest in our people and offer a series of programs that enables them to pursue a career that fulfils their potential. Our team members’ health and wellness is our priority as well as rewarding them for their hard work.
Secureworks is part of the Dell Technologies family of brands. If you require any assistance in applying for an open position or have any specific requirements to attend an interview, please contact UK_Talent_Acquisition@Dell.com
We are a Disability Confident Committed Employer and aim to ensure our recruitment process is inclusive and accessible. As members of the disability confident scheme, we guarantee to interview all disabled applicants who meet the minimum criteria for the vacancies and ensure our recruitment process is inclusive and accessible.
Secureworks, a Dell Technologies company, is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Secureworks are based on business needs, job requirements and individual qualifications, without regard to race, colour, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Secureworks will not tolerate discrimination or harassment based on any of these characteristics.
LIPriorityJob ID: R076759