Parent Category: Job Listings - Public Domain Listings Category: Network Engineers Published: Tuesday, 08 February 2022
NOTE: The following job description was extracted from public domain and published here as a value added service to BizLINKS Resources members. We are currently not a direct vendor to the above organisation and would be interested to work with the above through a internal organisation referral.

to BizLINKS Resources

Consultant - Incident Response/Digital Forensics at Mandiant

Job Description

Company Description

Since 2004, Mandiant has been a trusted partner to security-conscious organizations. Effective security is based on the right combination of expertise, intelligence, and adaptive technology, and the Mandiant Advantage SaaS platform scales decades of frontline experience and industry-leading threat intelligence to deliver a range of dynamic cyber defense solutions. Mandiant's approach helps organizations develop more effective and efficient cyber security programs and instills¯confidence in their readiness to defend against and respond to cyber threats.

Job Description

As a Mandiant IR / Forensics Consultant you will join part of an industry leading team where you will be focused on providing incident response, threat analysis, and program management to our client base. You will be responsible for incident response and threat analysis process development for customers, as well as using your incident response skills to help identify and contain security breaches. You will also brief senior executives on threats in their environment and their industry, based on Mandiant wealth of threat intelligence. We encourage give back to the community and strongly support sharing of expertise through authoring whitepapers, developing free tools, and speaking at conferences.


Develop custom reports based on data from multiple sources, including Mandiant appliances, threat intelligence, network sensors, and outside intelligence feeds
Present technical material in a clear, organized briefing to a mix of technical and non-technical personnel
Identify opportunities to integrate Mandiant appliances with other security products in customer's network
Develop custom reports and other custom configurations / use cases for Mandiant products within customer's environment
Help determine the extent of the compromise, attributes of any malware and possible data ex-filtrated
Develop, document and manage containment strategy
Maintain current knowledge of tools and best-practices in advanced persistent threats; tools, techniques, and procedures of attackers; and forensics and incident response


Relevant years experience in an analytical role of either network forensics analyst, threat analyst, incident response or security engineer/ consultant
One or more of the following technical certifications: GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), EnCE or equivalent certifications in these areas
Experience developing and managing incident response programs
Expertise in analysis of TCP/IP network communication protocols
Experience conducting analysis of electronic media, packet capture, log data, and network devices in support of intrusion analysis or enterprise level information security operations
Experience with advanced computer exploitation methodologies
Demonstrated ability to make decisions on remediation and countermeasures for challenging information security threats
Ability to synthesize data from multiple sources and present concise, relevant information to a non-technical audience
Experience with Mandiant products, highly desired
Experience with a scripting language such as Perl, Python, or other scripting language in an incident handling environment, highly desired
Preferably Bi-Lingual in both English and Japanese

Additional Qualifications:

Excellent communication and presentation skills with the ability to present to a variety of external audiences, including being able to interact with senior executives
Exceptional written communication
Strong leadership skills with the ability to prioritize and execute in a methodical and disciplined manner
Ability to set and manage expectations with senior stake-holders and team members
Excellent knowledge of current information security solutions and technologies, including network and host based products
Experience implementing NIST information security guidelines in a diverse network environment
Experience and knowledge of packet flow/TCP/UDP traffic, firewall technologies, proxy technologies, anti-virus, spam and spyware solutions (Gateway and SaaS)
Malware/security experience
Programming / scripting skills, highly desired
Show more Show less

Google Company: 


via BizLINKS Resources

Hits: 99
Email Employer:
Country: Singapore
Employment Type: Full time
Salary: Open