Responsible for daily incident management of customer incidents
Perform incident response and forensic analysis of compromised systems, identify and provide recommendations for remediation
Formulate and direct incident response efforts, prioritize those response efforts, and create legible incident reports that describe the compromise vector, attacker methodologies and artifacts
Ability to manage complicated global incidents
Ability to perform large-scale compromise assessments for customer environments
Build incident response plans and playbooks
Create attack scenarios for customer tabletop training exercises
Creation of detailed incident reports for customers and effective communication of findings to customers
Build and maintain sandbox/test lab environments to evaluate malicious code
Work within a team environment and will be responsible for coordinating work actions