IR & Forensics Consultants in England, United Kingdom

at FireEye

Computer & Network Security
Consulting/Business Strategy & Planning
Minimum Qualification
Bachelor's Degree
Required Experience
3 - 5 years
Employment Type
Full Time
Male or Female
Share this job

Job Description

As a FireEye IR / Forensics Consultant you will joining part of an industry leading team where you will be focused on providing IR and Digital forensics to our client base. You will be responsible for research and development as well as using your forensic skill sets to help identify and contain security breaches. We encourage giveback to the community and strongly support sharing of expertise by authoring whitepapers, free tools or speaking at conferences 


  • Provide immediate onsite services to FireEye clients who may have been breached
  • Locate vector of infection/breach
  • Help determine the extent of the compromise, attributes of any malware and possible data ex-filtrated
  • Develop, document and management of containment strategy
  • Summarize findings in technical report which may culminate in testing in court
  • Maintain current knowledge of tools and best-practices in forensics


  • 2 or more years’ experience in an analytical role of either network forensics analyst, Threat Analyst or security engineer/ consultant
  • 2 or more years’ experience in Investigative or Incident Response environments
  • One or more of the following technical certifications: GIAC Certified Incident Handler (GCIH), GIAC Certified Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM),EnCE or equivalent certifications in these areas
  • Expertise in analysis of TCIP/IP network communication protocols
  • Experience with a scripting language such as Perl, Python, or other scripting language in an incident handling environment
  • Experience conducting analysis of electronic media, packet capture, log data, and network devices in support of intrusion analysis or enterprise level information security operations
  • Experience with advanced computer exploitation methodologies, two or more analysis tools used in a CSIRT or similar investigative environment such as Encase or FTK, Helix , Paraben etc
  • Demonstrated ability to make decisions on remediation and counter measures for challenging information security threats
  • Excellent knowledge of security solutions and technologies, including: Linux, Network architecture/implementation/configuration experience and knowledge of packet flow/TCP/UDP traffic Firewall technologies, proxy technologies, anti-virus, spam and spyware solutions (Gateway and SaaS) Malware/security experience
  • Excellent communication and presentation skills with the ability to present to a variety of external audiences, including being able to interact with senior executives
  • Exceptional written communication.
  • Strong leadership skills with the ability to prioritize and execute in a methodical and disciplined manner. Set and manage expectations with senior stake-holders and team members
  Apply Now

Sponsored Jobs in United States

Ads by Careerslip