Security Engineer, Incident Response

Company Description

RSecurity provides comprehensive security products and cybersecurity services, specialising in sophisticated operations for military and government agencies. Leveraging cutting-edge technology and proven methodologies, we deliver unparalleled proficiency in risk recognition and mitigation. We create personalised security plans tailored to your business needs, ensuring robust protection against cyber threats.

Responsibilities:

• Lead security incident response in a cross-functional environment and drive incident resolution.
• Lead and develop Incident Response initiatives that improve RSecurity’s capabilities to respond and remediate security incidents effectively.
• Perform digital forensic acquisition and analysis of a wide variety of assets including endpoints, mobile, servers and networking equipment.
• Perform log analysis from a variety of sources (e.g., individual host logs, network traffic logs) to identify potential threats.
• Build automation for response and remediation of malicious activity.

Minimum Qualifications:

• 7+ years of experience in Security Incident Response, Investigations and Response Engineering.
• Knowledge of networking technologies and experience analysing network-based security events.
• Knowledge of operating systems, file systems, and memory structures and experience in host and memory forensics (including live response) on Windows, macOS and Linux.
• Experience investigating and responding to both external and insider threats.
• Coding/scripting experience in one or more general-purpose languages.
• Experience with attacker tactics, techniques, and procedures.
• Bachelor's degree or equivalent experience in Security.

Preferred Qualifications:

• Experience as a Lead Security Incident Responder and Investigator in a large and regulated organisation.
• Background in malware analysis, digital forensics, intrusion detection, and/or threat intelligence.
• Experience in threat hunting including the ability to leverage intelligence data to proactively identify and iteratively investigate suspicious behaviour across networks and systems.
• Broad knowledge across the Security domain, as well as deep focus in one (or more) areas such as Logs and events processing, Incident Management, Digital Forensics, Detection and/or response tool development.

How to Apply:

If you believe you are the right fit for this role, we would love to see your application. Please apply via EasyApply on LinkedIn.

Please Note: Only shortlisted candidates will be contacted.