Tech & Digital

Cyber Incident Responder (DFIR)

  • Location

    Manchester

  • Sector:

    Information & Cyber Security

  • Job type:

    Permanent

  • Salary:

    Negotiable

  • Contact:

    Arshit Garg

  • Contact email:

    a.garg@ioassociates.co.uk

  • Job ref:

    BBBH133598_1712220921

IO Associates has partnered with a client that is leading nationwide provider of cyber security services, digital forensics and eDiscovery. The client provides services to all business sectors, including law firms, insurance providers and law enforcement agencies.

The client is looking for a Cyber Incident Responder to work within their incident response team. This role will focus on helping clients who have been impacted by cyber incidents recover their technical estate and resume business activities.

Job Title: Cyber Incident Responder (DIFR)
Salary: £40,000 £45,000 per annum.
Location: North Manchester,Manchester
Interview Stage: 2 Stage Process.

The main responsibilities for the role will be:-

  • Perform emergency incident response for customers including containment(credential resets, network quarantine and EDR rollouts) to prevent further
  • compromise and gathering of relevant forensic evidence.
  • Investigate forensic evidence from compromised devices and networks to
  • determine the rootcause of incidents and understand the actions taken by threat
  • actors.
  • Acquire and investigate server logs, firewall logs, intrusion detection system alerts,
  • traffic logs and host system logs to determine what data has been impacted during
  • a cyber incident using opensource tools and industry standard forensics software.
  • Conduct forensic acquisitions from relevant servers and workstations
  • Analyse malware to understand and communicate its impact on systems and data
  • Delivering high quality technical investigation and forensic reports to clients
  • Deliver regular, highquality updates to clients throughout an investigation

Required:-

  • The Exchange servers, Domain Controllers, Active Directory, and other Windows server infrastructure
  • Office 365 and Azure/Entra, the cloud counterparts of the aforementioned.
  • Backup programmes, like Veeam.
  • Virtualization platforms, including as HyperV and VMware.

Benefits:-

  • Annual Subscriptions (from a selection of Magazine Subscriptions, Netflix, Amazon Prime, Spotify, etc.)
  • An anniversary present that increases in value every year.
  • Bupa Cash Plan (or its substitute).
  • Statutory retirement plan
  • An additional day off on your birthday
  • Bonuses for loyalty. £300 for three years. £500 over five years. £10k incentive after ten years.


*PS: The Company can't provide any sponsorship, so only candidates with the existing right to work in the UK will be considered for this role.