Skip navigation
Security Consultant - Incident Management

Security Consultant - Incident Management

Job Description


Incident Response is a very dynamic and volatile industry. The Security Consultant - IM will require an extensive understanding of digital investigations and underlying principles. Applicable fields of digital investigations include: computer forensics, network forensics, mobile forensics, e-discovery, malware analysis, memory analysis, and a strong understanding of information security principles. Each investigation requires the Security Consultant to be able to perform all phases of the investigation and remediation from start to finish, including providing security recommendations that will effectively mitigate vulnerabilities and prevent future attacks. 


  • Perform live incident response (reactive and proactive incident management) related engagements by identifying and remediating malicious applications, including, but not limited to the following activities:
    • Reactive:
      • Live incident response, systems triage, containment, and remediation
      • PCI forensic investigations (PFI)
      • Compromise assessment
      • Digital forensics
      • eDiscovery
      • Mobile phone forensics
      • Administrator lockout
      • Malware analysis
      • Network traffic analysis
    • Proactive:
      • Incident response risk assessments
      • Incident management program development
      • Incident management training
      • Incident management tabletop exercises
      • Live attack simulation
  • Perform confidently and authoritatively in role of incident management subject matter expert and lead customer personnel in responding to fast paced incidents
  • Perform work successfully with little supervisory oversight
  • Act as investigative architect and provide internal or external teams with documentation and methodology sufficient to conduct an investigation to successful completion
  • Demonstrate ability to invent and successfully utilize new investigative workflows to overcome emerging threats never seen before or to work around problems encountered during engagements
  • Remain current on information security and emerging threat trends and tools & methodologies to combat the same
  • Guide customers through investigations in compliance with regulatory requirements
  • Review security infrastructure and configuration to identify points of vulnerability and suggest recommendations for remediation
  • Travel as needed to customer locations to perform reactive or proactive engagements, including frequent travel with very short or no advanced notice. International travel may also be required
  • Adhere to policies, procedures, and security practices
  • Resolve problems independently and understand escalation procedure; coordinate escalations and collaborate with internal technology teams to ensure timely resolution of issues
  • Take meticulous notes and demonstrate strong reporting capabilities and attention to detail
  • Perform public speaking and eminence related activities
  • Develop training content and provide instruction on advanced investigative concepts
  • Testify in court cases regarding investigations conducted
  • Perform other duties as assigned
The Security Consultant has no direct reports, but will take the lead on investigations at the client site and/or supervise the activities of client security personnel.

Job Requirements


  • Bachelor’s Degree (B.A.) from four-year college or university in Information Technology, Information Security/Assurance, Digital Forensics, Engineering or related area of study; or four or more years related experience and/or training; or equivalent combination of education and experience required
  • Minimum 5 years total information security experience required
  • Minimum 3 years of live incident response required
  • Minimum 3 years of forensic analysis required
  • Minimum 3 years of working with computer hardware required
  • Minimum 3 years of network traffic analysis and deep packet inspection required
  • Minimum 1 years of malware analysis required
  • Minimum 1 years of policy, procedure, and program development required
  • Minimum 2 years of systems administration required
  • Minimum 1 years of network administration required
  • Minimum 1 years of technical consulting required
  • Minimum 2 years of software development or scripting experience required
  • Functional experience with a variety of operating systems, including Windows, Linux, or UNIX required
  • Excellent written and verbal communication skills required. Must be able to communicate technical details in a clear, understandable manner
  • Customer focus and a strong commitment to client satisfaction required
  • Demonstrated understanding of Information Security, Networking, and forensics required
  • Demonstrated ability to quickly learn new technology or concepts required
  • Demonstrated outstanding time management and organizational skills required
  • Must take initiative and work independently
  • This position requires the ability to respond onsite in a 24/7/365 environment; must be willing to work evening, overnight, and weekend and holiday hours as needed
  • Strong interest in technology and a desire to learn and grow in the Networking/Security/digital investigations field is required; skills and knowledge must be kept current
  • EnCase, FTK, X-Way, Paraben P2, and/or other experience with similar advanced products required
  • Demonstrated understanding of networking in any of the following deep packet analysis tools: Wireshark, Network Miner, or NetWitness required

  • Demonstrated understanding of malware and ability to perform behavioral analysis is required

  • Demonstrated understanding of threat vectors and related artifacts subsequently left behind and methods of retrieving and interpreting them

  • Security and forensic related certifications strongly preferred

  • Ability to interpret hexadecimal, binary, base64, and other encoding formats into human readable text

 Although FishNet Security has attempted to accurately and thoroughly describe this position, we reserve the right to change, add to or subtract from the duties outlined, within the sole discretion of FishNet Security, at any time, with or without advance notice. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law. 

Job Snapshot

Employment Type Full-Time
Job Type Consultant, Management, Professional Services
Education 4 Year Degree
Experience At least 4 year(s)
Manages Others Not Specified
Industry Other Great Industries
Required Travel Not Specified
Job ID 2011-1396
CareerBuilder Tip:
For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.

By applying to a job using you are agreeing to comply with and be subject to the Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.

Security Consultant - Incident Management

Enter notes about this job: