Sr Digital Forensics and Incident Response (DFIR) Analyst

Our client is seeking a Sr Digital Forensics and Incident Response (DFIR) Analyst to support Corporate Cybersecurity Operations. The person hired into this position will be assigned to our clients Cybersecurity Operations Center (CSOC) . The job duties include leadership, technical mentoring, and performing cyber data analytics at scale. Senior Incident Response Analyst will guide employment of detection rules (SIEM, EDR, YARA, etc.), hunt for advanced attackers, and review the technical work of junior and mid-level team members. Ideal candidates will be deadline oriented, comfortable making decisions, and able to consistently produce high quality work. The Sr DFIR Analyst will work closely with the CSOC Manager as required to produce detailed analysis of security events, support business units, and maintain a spirit of collaboration with IT Team Leaders. Responsibilities: • Protect the organization's IT assets as a member of the Cybersecurity Operations Center (CSOC) • Implement DFIR strategies to identify risks and reduce gaps in network and host security controls • Collaborate with IT Ops and end users to proactively thwart intrusions and support incident response • Prepare CSOC reports that document security incidents from discovery to remediation • Support vulnerability and cyber risk management functions by continually monitoring threats and exposures • Test and evaluate technology solutions in preparation for small and large-scale deployments • Periodic on-call responsibilities Qualifications: • Bachelor's Degree in Cybersecurity-related field or equivalent CSOC work experience • Minimum 6 years' experience with Splunk Enterprise Security to include leading optimization projects focused on data management, enhanced monitoring, and automation. Splunk Certified Power User or other advanced Splunk Certification is a plus. • Minimum 6 years' DFIR experience using Endpoint Detection and Response (EDR) technology • Minimum 6 years' experience performing forensic analysis on various types of evidence, such as disk, memory, network, and cloud artifacts. • Proficient with common scripting and programming languages • Experience with DoD Risk Management Frameworks • In-depth understanding of common security controls for Windows, Linux, and network equipment • Strong attention to detail, time management skills, and professional demeanor • US Citizenship Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide. Apply tot his job