Digital Forensics Incident Response

About the role:

Working alongside the Wingman Security Operation Centre, this role provides reactive Digital Forensics and Incident Response capability to SEP2’s customers. This is for both retainer-based clients and to support more detailed investigations as part of our Wingman Managed Detection & Response customer base.

Main Tasks:

• Own and actively respond to escalated, complex cases supporting SecOps Analysts and Engineers where necessary.
• Perform forensic support, working with our SecOps Specialist team to perform detailed investigations and guidance back to our clients.
• Create incident reports, providing clear and actionable timelines and recommendations.
• Support the team in development of our Standard Operating Procedures and aligning ourselves to standards such as NCSC CIR.
• Support the team with learning and development of DFIR skillsets and provide insights to internal skills progression matrix.
• Interacting with our threat lifecycle to help ensure lessons learnt from active engagements are made available to our customers.
• Confidently creates, and adheres to, Standard Operating Procedures with an eye for continuous improvement.
• Engages and participates in TechOps and Professional Services tasks.
• Confident service ownership within a Security Operations Discipline, offering advice and training to other SOC Analysts/Specialists.
• Contribute to the SecOps On-Call Rota (approximately 1 week in 5).

Personal Qualities:

• A “Customer Centric” attitude, with the ability to communicate with both technical and non-technical parties effectively.
• The ability to build credibility quickly with colleagues and customers.
• Competent and confident in customer facing situations.

Qualifications & Experience:

• 5 years’ experience within Security Operations & DFIR.
• Confident working with SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation, and Response) tools to deliver successful security outcomes.
• Excellent report writing skills.
• Expert in supporting all current service offerings.
• Accredited with a high-level certification relevant to the role.- Experience in customer engagement, adept at identifying and addressing customer needs, and proficient at fostering positive client relationships.

History:

Cyber Security Specialists, SEP2 is an organisation providing advanced cyber security services solutions and tech-driven services powered by passionate and honest people.

SEP2 started out in Leeds as an organisation built to add value and do business the right way. We’ve grown, we’ve developed, and we’ve evolved, we’ve taken on experts to expand our knowledge base and technical skills, building a portfolio of accreditations and we’ve developed important relationships with our vendors.

SEP2 are an award-winning cyber-security specialist, whose success is built on five values:

• Honesty
• Passion
• Tech Driven
• People Powered
• Committed to Doing Good

Every SEP2 colleague lives these values every day. We have a culture of passionate people who work as a team that will never leave a job incomplete. We believe in giving every member of our team responsibility. We nurture the desire to solve problems at the root cause. We encourage continuous improvement.

We’re here to beat the bad guys and we’rehere for the long-term.

Benefits

• Birthday Leave
• Medical Cashback Plan
• Tech&Home Scheme
• Cycle Scheme
• Salary Sacrifice EV Scheme
• Discount voucher scheme
• Volunteer Leave