Incident Response/ Cyber Security (SOC, CSIRT)

Reference: VAC-143
Sector(s): Compliance & Governance, Cyber/Infosec & IT Audit, IT e.g. SDLC, Legal & LegalTech (eDiscovery)
Salary: £ 50,000 to £ 75,000 Per Annum
Salary Details: £50,000 - £75,000
Town/City: London
Contract Type: Permanent

Incident Response/ Cyber Security (SOC, CSIRT)

Levels – Senior and Team Lead Consultants

Location – London

Base Salary: based on experience (approx. £50-75K base)

Our client a global consultancy are growing their Incident Response (IR) / Cyber Security Team under a well-known industry leader.This in a fantastic opportunity to join a team that is set to disrupt the marketplace.

Action security incident investigations involving computer crime and require log, forensic and malware analysis Collect and analyse intrusion detection system alerts; firewall, network traffic and host system logs to evaluatePerform forensic analyses to identify the presence of any malware, malware actions and what actions the malware has performedConduct security investigations in Linux and/or Windows OSProvide input into client communications, both written and oral, related to analyses performed for senior level review


Approximately 2-4 years (SC) and 4-7 years (MC) depending on experience of working in the Incident Response arenaKnow how to communicate effectively and concisely with high level management/ C-levelAbility to approach projects both from immediate and long-term viewExperience working with non-Windows programs e.g. Linux/ Unix, Mac.Scripting/programming experience (ideally Python, C#, VBA, or Shell)Experience working on projects in an investigatory capacity – either law enforcement or incident responseStrong desire to work on a team in a collaborative environment to achieve common goalsAbility to correlate incident events from multiple sources and create a timeline analysis across end pointsExceptional organizational skillsPassion for Incident Response, and a desire for continuous improvement in expertise


Probable Qualifications

Understanding of how to leverage existing security applications and appliances to address a compromise or malware/ransomware incidentsExperience working with Enterprise networks (network certs would be useful e.g. CCNA/CCNP securityUnderstanding of how to take malware apart from a virtual machine; dynamic malware analysis; and reverse engineering perspectivesMemory analysis skills a plusUnderstanding of mitigation and clean-up strategiesAbility to analyse complex network packet captures


• About Brimstone Consulting: We specialise in finding highly qualified staff in the following areas: E-Discovery and Digital Forensics; Payments;  Fraud - (AML/CTF, Investigation, CFE’s etc.);  Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.);  Compliance/Corporate Governance ;  IT  - (full SDLC- BA’s PM’s , Architects, Developers etc.);  Big Data and Data Analytics  - (MI/BI/CI);  InfoSec and Cyber Crime; Audit;  Accountancy and Finance

• Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients’ specifications.

Our Data Protection number: ZA053843