Cybersecurity Incident Response Specialist- Missoula

  • LMG Security
  • Missoula, MT, USA
  • Mar 23, 2021
Full time Computer Science Information Technology

Job Description

Missoula-based cybersecurity company is seeking a passionate cybersecurity consultant with an emphasis in incident response/digital forensics. You will not get bored in our fast-paced work environment! Successful team members strive for excellence in their role and in their personal lives by meeting challenges with a can-do attitude, but also understand life balance and the importance of fun. Our office is located in the heart of downtown Missoula and we encourage our team to take advantage!

To learn more about how you may be able to fit into our team please see the responsibilities and requirements listed below. If you think you are our ideal candidate please email us your resume, letter of interest, and three references today.

-Respond to and mitigate active cybersecurity incidents
-Provide on-site support to client IT staff
-Provide remote support as needed
-Hard drive imaging and physical evidence acquisition
-Network evidence identification and acquisition
-Ransomware triage, containment, and removal
-Malware analysis and sandboxing
-Write detailed and/or summary reports of response activities and recommendations
-Provide guidance regarding remote tool installation including threat-hunting and security software
-Conduct threat hunting using Carbon Black, Crowdstrike, and/or other OSINT / commercial toolkits
-Participate in on-call weekend rotation every ~3 weeks for active incident response
-Some travel required
-Some non-standard work hours (after-hours, weekends) required (for example, on-call rotation for incoming incidents)

Skills needed:

Strong IT background is required, including
- Minimum 5 years experience in IT / Network Administration
- Active directory and group policy
- Windows event log analysis
- Network protocol familiarity
- Excellent communication skills
- Proven ability to adapt to new situations
- Previous experience responding to security incidents is a plus