Principal Industrial Incident Responder (Australia)
Remote - Australia
Applications have closed
Dragos, Inc.
Dragos secures industrial assets across vertical industries. Learn more about how we protect critical industries to reinforce ICS/OT cybersecurity around the world.
The Dragos Global Services team serves as industry-leading experts in solving industrial control system security challenges. We then bring that expertise back and integrate it with our software technology: The Dragos Platform. We're looking for hands-on industrial control system knowledge and network security experience. You will provide tactical and strategic recommendations to mitigate cybersecurity vulnerabilities related to the network design, configuration, and inter-connectivity of operational technology. We're seeking a Principal Industrial Incident Responder to join our team in Australia. Our ideal candidate will have a working knowledge of incident response, digital forensics, intrusion analysis, hunting, and a variety of industrial software and hardware. This role requires up to 50% travel, both domestic and international.
#LI-JF1 #LI-REMOTE
Responsibilities
- Serve as a lead for incident response retainer customers; this includes onsite and offsite incident response activities such as triage and analysis within industrial environments, briefing customers on investigation results, and recommending courses of action
- Responsible for customer deliverables such as forensic reports, findings, recommendations, and presentations
- Generate playbooks and other content for customers
- Assist in other service engagements such as tabletop exercises, assessments, training, etc.
- Support the buildout of the industrial incident response practice to meet the requirements of a growing team and customer base
- Lead and mentor other members of the incident response team
Requirements
- 7+ years of experience with cybersecurity digital forensics and incident response (DFIR)
- Expertise in at least two of the following fields: network forensics, memory forensics, and disk forensics (focus on methodology over specific tools)
- Experience leading an investigation from start to finish including pivoting between data types and correlating events together
- Comfortable using and administering Windows and Linux operating systems
- In-depth knowledge of networking concepts (TCP/IP, Ethernet, etc.), and configuration and rule creation for common security tools (e.g., Wireshark, Snort/Suricata, Zeek, Yara, Sigma)
- Ability to analyze and interact with industrial network protocols
Compensation
- Salary: 223,000 AUD
- Compensation: Salary + Equity + Benefits + Superannuation
- Equity is communicated in USD and to minimize confusion, this will be discussed on the first call with the Dragos recruiter. Employees receive equity options that start vesting on their first day and will have an opportunity to earn additional equity
#LI-JF1 #LI-REMOTE
Tags: Forensics ICS Incident response Industrial Linux Network security Snort TCP/IP Vulnerabilities Windows
Perks/benefits: Equity Startup environment Team events
Regions:
Remote/Anywhere
Asia/Pacific
Country:
Australia
Job stats:
7
1
0
Category:
Incident Response Jobs
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Security Analyst jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open ISO 27001-related jobs
- Open Clearance-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs