Incident Response Specialist

PwC

Vacature informatie

Bedrijf: PwC

Locatie: Amsterdam

Opleidingsniveau: WO

Arbeidsvoorwaarden: Marktconform

Solliciteren

Line of Service

Advisory

Industry/Sector

Not Applicable

Specialism

Management Level

Senior Associate

Job Description & Summary

Incident Response Specialist


About the team

Our Cyber Threat Operations practice is PwCs front-line technical services group, responsible for the development, management and execution of a portfolio of blue and red team services. We provide subscription and bespoke threat research services, short-term and managed endpoint and network hunting services, incident response and readiness services and adversary emulation.

About The Role

Are you passionate about investigating state sponsored attacks, data breaches, economic espionage and targeted intrusions? Join the Incident Response team at PwC, which is responsible for the development and delivery of incident response and threat hunting services provided by PwC across the globe, ranging from single-system analysis to major intrusions on some of the world’s largest corporate networks.

The Incident Response Specialist role will primarily consist of conducting incident response investigations on behalf of a wide variety of clients across every sector. Within the role you will have scope to be involved in all aspects of incident response activity, as well as to develop specialisms in particular areas. You will be working within complex security environments and alongside Incident Response Managers to design, communicate and execute incident response, containment and remediation plans.

Responsibilities

  • Plan, organise and devise approaches necessary to respond to incidents and obtain useful forensic information from the evidence collected
  • Prioritising and differentiating between potential intrusion activity and false alarms
  • Conduct incident and investigation post-mortem briefings, analysis, and reporting
  • Conduct forensic investigations including physical/logical disk, network packet capture, memory analysis or malware analysis
  • Provide technical guidance to investigations to correctly gather, analyse and present digital evidence to both business and legal audiences
  • Collate conclusions and recommendations and present forensics findings to stakeholders
  • Contribute to the development of policies, standards and guidelines for incident response
  • Correlate threat intelligence with active attacks and vulnerabilities within the enterprise
  • Monitor and analyse security events and identify trends, attacks, and potential threats
  • Research and test out new DFIR tooling and techniques
  • Creating and tracking security investigations to resolution; and, Facilitate the integration of threat and data feeds for the purposes of incident response



Skills and Experience

We expect you will already be able to demonstrate experience and knowledge in one or more of the following areas:

  • Experience in forensic capture and investigation tools such as EnCase, X-Ways, SIFT or F-Response
  • Experience with log management solutions such as Splunk, Elastic
  • Knowledge of Windows system internals and ability to identify common indicators of compromise from dead or live systems and live memory using tools such as the SysInternals suite, RegRipper, Volatility, or Mandiant Redline
  • Experience of gleaning and analysing security information from enterprise network and host based sensors, such as IDS/IPS systems, HIDS, SIEMs, AD controllers and firewalls
  • Expertise analysing raw network traffic captures or deployment and use of network forensics or monitoring devices such as FireEye, Solera, WireShark, SNORT or Netwitness
  • Knowledge of scripting languages such as Python, Perl or PowerShell and their use in forensic analysis and live incident response, or experience using other programming languages to develop software for host-centric, network-centric or log-centric security analysis

Are you passionate about investigating state sponsored attacks, data breaches, economic espionage and targeted intrusions? Join the Incident Response team at PwC, which is responsible for the development and delivery of incident response and threat hunting services

Education (if blank, degree and/or field of study not specified)

Degrees/Field of Study required:

Degrees/Field of Study preferred:

Certifications (if blank, certifications not specified)

Desired Languages (If blank, desired languages not specified)

Travel Requirements

Up to 40%

Available for Work Visa Sponsorship?

Yes

Government Clearance Required?

No

Job Posting End Date

Vacature informatie

Bedrijf: PwC

Locatie: Amsterdam

Opleidingsniveau: WO

Arbeidsvoorwaarden: Marktconform

Solliciteren

Meer vacatures

×
ACE Company AT Osborne Accenture Adaptif Adlasz Adviesgroep Novius AevesBenefit Anderson MacGyver Annalise Arlande Arthur D. Little Atos Consulting BDO BMC BOLD Bain & Company Baker Tilly Bakkenist BearingPoint Berenschot Bewegin Bisnez BluPoint Boer & Croon Management Bostec Boston Consulting Group Bright & Company | People Strategy Buitenhuis Advies Bvolve COMATCH CPMview Capgemini Invent Cmotions Conclusion Count & Cooper De Issuemakers De Kleine Consultant Deloitte Delta Capita Digital Power Dimensys EY-Parthenon EY Ecorys Eden McCallum Energyprofs Enigma Consulting Eurekon FTE Groep FTE Improvery Finext First Consulting FitchFinance & FitchData Front Consulting GalanNXT Goudvisie Grant Thornton Groenewout Gupta Strategists Gwynt Hamstra & Partners Hogenhouck m&a Hospitality Group Hot ITem House of Performance IG&H ITDS Business Consultants Improven Intermedius Itility JBR KPMG KWINK groep Kearney Kirkman Company Korn Ferry KplusV Kruger Kurtosis M&I/Partners M3 Consultancy METRI MLC MSR Consulting Group Magnus Marktlink Mazars McKinsey & Company Mercer Mobilee Monitor Deloitte Morgens Möbius NEWCRAFT Ngenious Node1 Oliver Wyman Ooa OrangeX Ordina Organize Agile PA Consulting Group PNO Consultants People Change Projective Protiviti PwC Quint Quintop Raad van Toekomst RedFoxBlue Rijnconsult Riverwise Roland Berger SOLVE Consulting Salvéos SeederDeBoer SiRM Sia Partners Significant Groep Simon-Kucher & Partners Solid Professionals Strategy& Student Consultancy Group Summiteers Supply Value Symbol Synechron TIC Advisory TWST The Next Organization The Next View Trevian Turner TwynstraGudde UMS Group UPD UniPartners VODW Van Oers Corporate Finance Vanberkel Professionals Varrlyn Velox Vintura Volt Strategy Voogt Pijl & Partners WIN Willis Towers Watson YGroup YNNO Yellowtail Young Advisory Group Zanders Zestgroup buro C5 flowresulting innergo jb Lorenz p2 parsionate
×
×
×
×

Contract


Dienstverband