Cyber Analyst, Digital Forensics Incident Response
Canada
Full Time Entry-level / Junior USD 80K - 130K
At-Bay
At-Bay is a cyber insurance provider designed from the ground up to help businesses meet digital risk head-on.
Why you should join our At-Bay Security team:
At-Bay is a fast-growth InsurSec company (Insurance x Cybersecurity) on a mission to bring innovative products to the market that help protect small businesses from digital risks. As an InsurSec provider, we uniquely combine insurance with mission-critical security technologies, threat intelligence, and human expertise, to bridge the critical security capability gap that exists among SMBs in the community. We believe InsurSec is an $80B market opportunity and we are excited to expand our DFIR team in order to help expand our reach and influence in the business and security community, of which we serve 35,000 customers.
With At-Bay, our customers experience 5X fewer ransomware attacks. This is just the tip of the iceberg! Click here to learn more about what we're building.
The Role:
- Cybersecurity Analysts focused on Digital Forensics and Incident Response (DFIR) deliver incident investigation and response services to At-Bay insureds via:
- Forensically sound collection, transmission, and storage of digital evidence
- Analysis of digital evidence to identify indicators of compromise and adversary activity
- Development of incident timelines and theories of compromise
- Identification of incident root causes
- Participation in threat actor negotiations as necessary (e.g., ransom negotiations, etc.)
- Participation in incident recovery (e.g., restoration of data from backups, reimaging workstations and servers, rebuilding network infrastructure, etc.) activities as necessary
- Development and delivery of incident reports to document key incident details for engagement stakeholders including executive leaders for insureds, breach coach attorneys, and At-Bay claims management staff as necessary
- Development and delivery of recommendations to mitigate the risk of future incidents for impacted insureds
- Development and delivery of incident response training and simulations for targeted insureds
- Forensically sound collection, transmission, and storage of digital evidence
Key skills:
- Previous digital forensics and incident response experience
- Strong oral and written communications skills
- Previous hands-on experience performing digital forensics and incident response including several of the following:
- Business Email Compromise
- Ransomware
- Digital evidence collection and analysis
- Development and analysis of cyber threat intelligence
- Leadership of or participation in investigations involving digital evidence
- Intrusion detection / cyber threat hunting
- Malware analysis
- Incident recovery activities such as restoration of data from backups, operation of decryptor tools, etc.
- Previous hands-on experience working in information technology operations (e.g., Network Operations Center, Security Operations Center, Incident Response Team, etc.)
Minimum requirements:
- Bachelor’s degree or equivalent
- Minimum of 2 years of experience in cybersecurity operations, incident response, incident recovery, or another security discipline
- Willingness to travel as needed to perform job functions
Preferred requirements:
- Significant undergraduate or graduate coursework in computer science, computer engineering, information systems, or cybersecurity
- Previous background in law enforcement or government / military with experience leading complex technical investigations
- Knowledge of cloud environments including knowledge of cloud security products and services offered by major cloud service providers (e.g., AWS, Azure, Google)
- Experience in a top-10 cyber consulting firm or leading DFIR provider preferred
- One or more industry cybersecurity certifications (e.g., GCIH, Security+, CISSP, etc.)
Work location:
- Canada
Our estimated base pay range for this role is $80,000-$130,000 CAD per year. Base salary is determined by a variety of factors including but not limited to market data, location, internal equitability, domain knowledge, experiences and skills. In general, if the position sparks your interest we encourage you to apply - our team prioritizes talent.
#LI-CK1
Tags: AWS Azure CISSP Cloud Computer Science DFIR Forensics GCIH Incident response Intrusion detection Malware SOC Threat intelligence
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Analyst jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Senior Information Security Analyst jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open IT Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open Forensics-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs