Security Engineer – Incident Response and Digital Forensics

  • 1715 Deer Tracks Trail, St. Louis, MO 63131, USA
  • Full-time

Company Description

SpearTip - Mission Statement

Blend cutting-edge technologies, unique skill sets and proven military cyber counterintelligence strategies, SpearTip partners with our Partners to protect shareholder value, shield corporate reputations and enhance long-term profits.

https://www.speartip.com 

Job Description

Position Description

This position will be responsible for protecting company assets including information systems, networks, devices, and data from threats, such as security breaches, computer viruses or attacks by cyber-criminals. A key focus on this position is on SpearTip’s Incident Response and Digital Forensics engagements.

Characteristics Requirements

Not all of the following requirements are expected for every potential candidate. SpearTip considers both the character of person and their experience when making hiring decisions. For a strong candidate, SpearTip is willing to offer training (internal and external) to fill necessary knowledge gaps.

Qualifications

Personal Attributes:

  • Creative brainstormer willing to build solutions collaboratively to solve complex cybersecurity problems
  • Self-motivated, decisive decision-maker with the ability to take ownership and willingness to be accountable
  • Willing to stick with difficult problems to consistently produce the best solution for our partners and willing to champion new technology and different approaches
  • Desires to be immersed in a training culture to both develop others and improve self


Educational and Experience:

  • Computer Science, Cybersecurity, or Information Systems Bachelor’s Degree or equivalent professional experience in a development or IT operations role
  • One intermediate cyber security certification – desired but not required (e.g. GCIH, GCFA, CHFI, CySA+, etc.)
  • Proficient in incident handling procedures (NIST.SP.800-61r2)
  • Experience or knowledge of with digital forensic tools (for example, FTK, EnCase, Magnet Axiom)
  • Experience or knowledge of memory forensic tools (for example, Volatility)
  • Experience or knowledge of enterprise detection and response tools (Carbon Black, CrowdStrike, Sentinel One, Cylance, etc.)
  • Experience or knowledge of SIEM tools (Splunk or LogRhythm)
  • Proficient in Windows and Linux operating systems
  • Proficient in computer networking concepts

 

Responsibilities:

  • Responsible for leading or participating in onsite incident response and digital engagements
  • Maintain chain of custody and proper evidence handling procedures during engagements
  • When required by the nature of the engagement, act as a consulting or expert court witness
  • Data collection, analysis, and report writing - collect and document the timeline of events, collect, analyze, and validate findings, and provide “best practice” recommendations to the client; with the understanding that your recommendations have significant impact to client operations
  • Assist in triage and validation of alerts from enterprise detection and response tools
  • Maintain and cultivate working knowledge of Axiom, ShadowSpear, Paladin, SpearPortal, FTK, and additional Digital Forensics and Managed Detection and Response tools
  • Problem solve; independently and in a team environment
  • Exercising independent judgment and discretion, communicate/coordinate with clients regarding alerts, project updates, and project status throughout an engagement
  • Responsible for the timely completion of engagements and appropriately communicate project status and workload to company leadership through the required channels
  • Maintain current certifications (as applicable)
  • When appropriate, problem solve independently and in a team environment
  • Be available for short-term periodic travel to support regional, national, and international clients
  • Be willing to work towards new certifications with proper training at SpearTip’s expense at the discretion of company leadership
  • Attend and actively participate in the Operations L10 Meetings and EOS process
  • Responsibilities subject to change at the discretion of company leadership
  • Project Management - Exercising independent judgment and discretion, communicate/coordinate with clients regarding alerts, project updates, and project status throughout an engagement

 

Additional Information

All your information will be kept confidential according to EEO guidelines.

Benefits:

  • Health Insurance Coverage – 100% coverage plan, current employee contribution is $0
  • Dental & Vision Coverage – current employee contribution is $0
  • Participation in 401(K) Plan, employer match of 100% for the initial 3% of contribution and 50% for next 2% of contributed funds, immediate vesting
  • SpearTip approved holidays (currently 8 approved holidays)
  • Personal leave days