Cyber Analyst, Digital Forensics Incident Response

Remote (US)

Why you should join our At-Bay Security team:

At-Bay is a fast-growth InsurSec company (Insurance x Cybersecurity) on a mission to bring innovative products to the market that help protect small businesses from digital risks. As an InsurSec provider, we uniquely combine insurance with mission-critical security technologies, threat intelligence, and human expertise, to bridge the critical security capability gap that exists among SMBs in the community. We believe InsurSec is an $80B market opportunity and we are excited to expand our DFIR team in order to help expand our reach and influence in the business and security community, of which we serve 35,000 customers.

With At-Bay, our customers experience fewer ransomware attacks. This is just the tip of the iceberg!Click here to learn more about what we're building.

• Cybersecurity Analysts focused on Digital Forensics and Incident Response (DFIR) deliver incident investigation and response services to At-Bay insureds via:
  • Forensically sound collection, transmission, and storage of digital evidence
  • Analysis of digital evidence to identify indicators of compromise and adversary activity
  • Development of incident timelines and theories of compromise
  • Identification of incident root causes
  • Participation in threat actor negotiations as necessary (e.g., ransom negotiations, etc.)
  • Participation in incident recovery (e.g., restoration of data from backups, reimaging workstations and servers, rebuilding network infrastructure, etc.) activities as necessary
  • Development and delivery of incident reports to document key incident details for engagement stakeholders including executive leaders for insureds, breach coach attorneys, and At-Bay claims management staff as necessary
  • Development and delivery of recommendations to mitigate the risk of future incidents for impacted insureds
  • Development and delivery of incident response training and simulations for targeted insureds
• Previous digital forensics and incident response experience
• Strong oral and written communication skills
• Previous hands-on experience performing digital forensics and incident response, including several of the following:
  • Business Email Compromise
  • Ransomware
  • Digital evidence collection and analysis
  • Development and analysis of cyber threat intelligence
  • Leadership of or participation in investigations involving digital evidence
  • Intrusion detection / cyber threat hunting
  • Malware analysis
  • Incident recovery activities such as restoration of data from backups, operation of decryptor tools, etc.
• Previous hands-on experience working in information technology operations (e.g., Network Operations Center, Security Operations Center, Incident Response Team, etc.)
• Bachelor’s degree or equivalent
• Minimum of 2 years of experience in cybersecurity operations, incident response, incident recovery, or another security discipline
• Willingness to travel as needed to perform job functions

• Significant undergraduate or graduate coursework in computer science, computer engineering, information systems, or cybersecurity
• Previous background in law enforcement or government/military with experience leading complex technical investigations
• Knowledge of cloud environments, including knowledge of cloud security products and services offered by major cloud service providers (e.g., AWS, Azure, Google)
• Experience in a top-10 cyber consulting firm or leading DFIR provider preferred
• One or more industry cybersecurity certifications (e.g., GCIH, Security+, CISSP, etc.)

• USA, Nationwide but preference for candidates based in Pacific timezone. The expected hours will be 11am PT-8pm PT.
• This will be a fully remote position

Our estimated base pay range for this role is $80,000-$130,000 per year. Base salary is determined by a variety of factors including but not limited to market data, location, internal equitability, domain knowledge, experiences and skills. In general, if the position sparks your interest we encourage you to apply - our team prioritizes talent.

#LI-CK1

*

indicates a required field

First Name *

Last Name *

Email *

Phone *

Location (City) *

Resume/CV *

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Enter manually

Accepted file types: pdf, doc, docx, txt, rtf

Will you now or in the future require At-Bay to commence or sponsor an immigration case in order to employ you? (for example, H-1B or other employment-based immigration cases) Select...

We invite applicants to share their demographic background. If you choose to complete this survey, your responses may be used to identify areas of improvement in our hiring process.

How would you describe your gender identity? (mark all that apply) Select...

How would you describe your racial/ethnic background? (mark all that apply) Select...

How would you describe your sexual orientation? (mark all that apply) Select...

Do you identify as transgender? Select...

Do you have a disability or chronic condition (physical, visual, auditory, cognitive, mental, emotional, or other) that substantially limits one or more of your major life activities, including mobility, communication (seeing, hearing, speaking), and learning? Select...

Are you a veteran or active member of the United States Armed Forces? Select...