Digital Forensic Incident Response Analyst
New York City, NY
GSR
GSR is the global leader in crypto trading and market-making. We specialize in providing liquidity, trading and risk management solutions.GSR works with token issuers, traders, investors, miners, and more than 60 cryptocurrency exchanges around the world. In volatile markets we are a trusted partner to crypto native builders and to those exploring the industry for the first time.
Our team of veteran finance and technology executives from Goldman Sachs, Two Sigma, Citadel, and Tower Research among others, has developed one of the world’s fastest and most robust trading platforms designed to navigate issues unique to the digital asset markets. We have continuously improved our technology throughout our history, allowing for our clients to scale and execute their strategies with the highest level of efficiency.
Working at GSR is an opportunity to be deeply embedded in every major sector of the cryptocurrency ecosystem.
We are looking for an experienced digital forensic incident responder to join our global and highly specialist Information Technology team. You will work investigating attacks against GSR while performing deep forensic analysis to determine attack vectors, TTP and more
This position requires strong knowledge of security concepts, digital forensics, incident response, cloud security (AWS) and programs (threat intelligence, incident management, threat hunting). Your contribution will be fundamental to shaping the firm's IT security ecosystem.
Resposibilities
- Responsible for the operation and execution of the forensic activities within the Cybersecurity Operations
- Participate in threat hunting missions and remediate gaps that are identified
- Perform deep-dive, incident response-oriented forensic analysis on media identified in potential security incidents
- Collect, analyze, and properly preserve digital evidence from GSR laptops, desktops, servers and cloud assets.
- Ensure appropriate tracking and handling of events to meet audit and legal requirements.
- Perform proactive analysis and reporting of cyber threats and security anomalies
- Monitor for alerts from security tools and responds with an intelligence-driven, investigative analysis approach.
Some Deliverables
- Ensure all the documentation is generated with the quality standards required by each of the incidents and data collection requests
- Escalate incidents as needed, for further immediate action and support
- Conduct and assist with the incident response (investigate, analyze, and remediate incidents) including assisting with cyber threat intelligence research.
Your Profile
- Three or more years of experience in a large organization performing active incident response work and performing such work for large customers
- Solid understanding of Linux and macOS Operative system
- Knowledge of anti-forensics tactics, techniques, and procedures
- Skill in analyzing memory dumps to extract information
- Experience with AWS
- Experience with tools such as Celebrite to perform triage, live data acquisition and targeted data collection
- Experience with EnCase, FTK, CyFIR, or similar forensic analysis platforms
- Experience performing digital forensics on macOS and iOS systems
- Knowledge of Monitoring (SIEM) and Detection (EDR)
- Knowledge of the MitreATT&CK framework
- Strong written and communication skills
- One or more certifications of the following:
- CFCE (Certified Forensic Computer Examiner)
- GIAC Certified Forensic Examiner (GCFE)
- GIAC Network Forensic Analyst (GNFA)
- EnCE (EnCase Certified Examiner)
- EnCEP (EnCase Certified eDiscovery Practitioner)
- GASF (GIAC Advanced Smartphone Forensics)
Hybrid working pattern in all of our offices from London, New York, Singapore, Zug and Malaga.Regular Town Halls and off-sites, team lunches and drinks.
A Corporate and Social Responsibility program as well as charity fundraising matching and volunteer days. Immigration and relocation support where required.
GSR is proudly an Equal Employment Opportunity employer. We do not discriminate based upon any applicable legally protected characteristics such as race, religion, colour, country of origin, sexual orientation, gender, gender identity, gender expression or age. We operate a meritocracy, all aspects of people engagement from the decision to hire or promote as well as our performance management process will be based on the business needs and individual merit, competence in the role.
Learn more about us at www.gsr.io.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: AWS Cloud Crypto EDR EnCE Finance Forensics GIAC GNFA Incident response iOS Linux MacOS Monitoring SIEM Threat intelligence
Perks/benefits: Competitive pay Health care Lunch / meals Relocation support Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open Forensics-related jobs