Senior Incident Response Remediation Consultant

Job Description

Do you want to joina team of security consultants investigating computer crimes and breaches that make the headlines – and many more that don’t? Can you think like an attacker to stay one step ahead of them, or understand the operational security controls needed to detect, remediate, and prevent compromises?

This is an opportunity for you to work on challenging projects, communicate with clients, provide hands-on assistance with Incident Response containment and remediation activities, and create and present high-quality deliverables.

• Create and document detailed remediation guides and tracking documents, for clients to leverage to prepare for and execute a coordinated remediation event
• Design and assist clients with network architecture enhancements and configuration modifications to defend against identified threats and attacker techniques
• Recommend and document specific counter-measures and mitigating controls
• Articulate FireEye & Mandiant’s combined capabilities in marketing discussions, proposal efforts, and capability briefings
• Develop comprehensive and accurate reports and presentations for both technical and executive audiences
• Effectively communicate remediation strategies and workstreams to client stakeholders including technical staff, executive leadership, and legal counsel

Qualifications

• 5+ years of information security experience
• Technical expertise in at least three of the following areas:
  • lead system administrator or network engineer in an enterprise environment
  • Thorough understanding of enterprise security controls in Active Directory / Windows environments
  • Active Directory Trusts and Architectures
  • Privileged Access Management best practices
  • Windows and Unix endpoint hardening and security control enforcement
  • Expertise in enforcing application whitelisting and host-based restrictions
  • Implementation and enforcement of technologies such as Credential Guard and Device Guard
  • Understanding of enterprise networking and knowledge of network segmentation strategies
  • Implementation and management for both network and host-based firewall configurations
  • Implementing logging configurations for network devices and Windows and Unix endpoints
  • PowerShell scripting

• Prior training and public speaking engagement experience
• Must be eligible to work in the US without sponsorship
• Willingness to travel up to 50%
• We are focusing on candidates in the US Central Region

Additional Information

At FireEye we are committed to our #OneTeam approach combining diversity, collaboration, and excellence. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability.