As a Lead Consultant (FortiGuard Incident Response), you will:
Lead IR engagements and mentoring/training junior analysis.
Continue to focus on process improvement for the customer facing incident response services.
Conduct host-based analysis and forensic functions on Windows, Linux, and Mac OS X systems.
Review firewall, web, database, and other log sources to identify evidence and artifacts of malicious and compromised activity.
Leverage our FortiEDR Platform to conduct investigations to rapidly detect and analyze security threats.
Preform basic reverse engineering of threat actor’s malicious tools.
Develop complete and informative reports and presentations for both executive and technical audience.
Availability during nights/weekends as needed for IR engagements.
Perform memory forensics and file analysis as needed.
Monitor underground forums, our FortiGuard Threat Labs, along with other open-source intelligence outlets to maintain proficiency in latest actor tactics and techniques.