Job description
Worker Sub-Type:
Regular
Job Description:
Be part of something special; come join the BlackBerry Professional Services Team!
Today, BlackBerry® is a transformed company. We’re no longer about the smartphone, what we once did for smartphones is what we’re now doing for Enterprise of Things (EoT) – envisioning, enabling, and securing new forms of communication that are connecting the business world in extraordinary new ways. We have the most complete and advanced end-to-end solutions to enable EoT, and our ideas lead the way in the hottest markets like cybersecurity, SaaS, neural networks, and autonomous vehicles.
BlackBerry® – the iconic brand you know and trust – is now a market leading security software and services company. As the Internet of Things (IoT) has become the next great wave in business transformation, BlackBerry already secures over 500 million endpoints. We are leading the way with a single platform for securing, managing, and optimizing how intelligent endpoints are deployed in the enterprise, enabling our customers to stay ahead of the technology curve. BlackBerry’s top customers include all the G7 governments, 9 of the top 10 global financial institutions, automotive OEMs, aerospace, defense, healthcare, and media companies. Our mission is “Intelligent Security. Everywhere.”
Are you the person we are looking for?
THE POSITION
BlackBerry is seeking a Principal Incident Response Consultant to help grow our expanding Incident Response practice. As part of the growing Professional Services team, this position will have oversight and responsibility over assigned Incident Response engagements, Incident Response training programs, innovation of internal BlackBerry tools, and growing the IR practice overall.
In this role, you will:
- Take a lead role in client investigation and response engagements, influencing the response strategy with stakeholders from technical to senior management
- Report and present detailed results and recommendations to both technical and non-technical stakeholders
- Work in partnership with BlackBerry Cybersecurity sales teams, demonstrating the capacity and ability of the forensics business to potential clients
- Collect and investigate data from a wide range of systems and software to understand the attacker activity and produce a containment strategy
- Engage in skills transfer both internally and, when required, with customers.
- Work to respond in real time to advanced attackers in complicated and fluid environments
- Work with an enthusiastic and expert team to contribute to keeping the methodology at the cutting edge
- Collaborate with the other cyber security teams to add value to BlackBerry’s suite of service offerings
Ideally, you will have:
- Experience performing Digital Forensics and Incident Response (DFIR) investigations on multiple Operation Systems, e.g., Windows, Mac, Linux, and network appliances
- Tool agnostic with an emphasis on knowing the forensic artifacts themselves versus relying on tool output
- Knowledge of and the ability to use popular EDR technologies during DFIR engagements
- Experience analyzing a myriad of system and network logs using Splunk and/or ELK
- Experience responding to APT style targeted attacks, with a good understanding of operational security concepts during live breaches
- Knowledge of threat hunting and knowledge of the artifacts necessary to review while threat hunting
- Ability to triage and analyze malware dynamically within a virtual environment to quickly gain a set of IOCs during an IR engagement
- Ability to clearly interact with our clients and their executive leadership
- Creative problem-solving self-starter, and an analytic and qualitative eye for reasoning
- Ability to work with a remote team via collaboration tools
- Strong documentation skills, ability to write executive and technical DFIR reports
Useful but not essential:
- Proficient in either Python, PowerShell, or Shell Scripting
- Knowledge performing DFIR investigations in Cloud environments (Azure, O365, AWS, and Google)
- Incident response certifications such as those offered by SANS/CREST/GIAC
- Experience of ‘deep-dive’ and individual host forensic analysis
- Experience performing memory analysis as part of an incident response engagement
- Any languages in addition to English
#LI-DA1
#LI-Remote
Scheduled Weekly Hours:
40
offroadmanagementgroup.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, offroadmanagementgroup.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, offroadmanagementgroup.com is the ideal place to find your next job.