Connecting linkedin



Senior Associate (DFIR)

  • Location

    New York, NY

  • Sector:


  • Job type:


  • Salary:


  • Contact:

    Greg Farris

  • Contact email:

  • Salary high:


  • Salary low:


  • Published:

    11 days ago

  • Expiry date:


  • Startdate:


The Firm is a global risk management and intelligence company. Our due diligence, research, cyber and intelligence practices can help Fortune 500 companies, law firms and financial institutions reduce risk and discover critical information. based in Chicago, IL with offices in McLean, VA; New York, NY; Los Angeles, California and Dublin, Ireland, the firm's group of former military personnel, intelligence officers, law enforcement agents and business investigators speak many foreign languages ​​and have decades of experience. experience in due diligence, business research and redundancy gathering operations. 110 countries. We provide stakeholders with useful information to address compliance, compliance, investment, physical and cyber security, and litigation issues.




Senior Associates, Digital Forensics Incident Response (DFIR), in the firm's Cyber ​​Practice, collects and analyzes electronic evidence as part of a cyber investigation. Senior Associates will also have the opportunity to assist Associate Directors, Directors, Senior Directors and Managing Directors in business development and client involvement matters.




Managing partners are generally responsible for:


Collect, store and analyze data from electronic data sources, including laptops and desktops, servers, servers and mobile devices.
Determine the cause and extent of network breaches and other cyber security incidents.
Major incident response projects, including data breaches, trade email compromises and other cyber investigations.
Assist projects in other procedures as needed. Manage multiple projects at once.
Work under strict deadlines and outside normal business hours as needed.



Create high-quality product work and present complex technical issues clearly and concisely through excellent writing and oral presentation skills.
Constant ability to work effectively and professionally with colleagues.
Possibility to work independently and as part of a team. Experience in conducting investigative research in litigation and / or asset tracing projects.
Excellent organizational skills and the ability to manage multiple projects simultaneously with limited supervision.



To successfully perform this work, the individual must be able to perform all important functions satisfactorily. Appropriate arrangements can be made to enable people with disabilities to perform important tasks.


Senior Associate candidates have more than 3-5 years of experience with Digital Forensics and Incident Response (DFIR) features, including, but not limited to: forensic analysis of Windows, Macintosh and Linux operating systems, such as iOS and Android device analysis. Hold GCFE, GCIH, CCE, EnCE as equivalent digital forensic / incident certification.
Expertise in industry standard DFIR applications such as Encase, FTK, Nuix, Magnet, MSAB, Cellebrite, and forensic recording and memory analysis tools such as Redline and Volatility.
Knowledge of working with cloud infrastructure, such as Amazon Web Services, G Suite, Office 365 and Azure.
Try analyzing logs and event logs from Windows, Apache, IIS, firewall logs, and more.
Knowledge of command line tools (eg grep, PowerShell, etc.) and coding languages ​​(eg Python, C, C ++, etc.). Gain in-depth knowledge of Endpoint Detection & Response (EDR), Intrusion Detection & Prevention (IDP), Security Information & Event Management and Network Analysis Tools.
Scripting / programming skills (Python, SQL, VBA script or other similar programming language).
Experience with data visualization tools (Tableau, Power BI, Pivots and Advanced Excel).



If physical requirements are not basic job functions, reasonable accommodation can be provided for people with disabilities. Candidates are expected to:


Comfortable sitting at a table and working at a computer. Sometimes he can lift 5 pounds.
He has the ability to continuously see, hear and speak at a level that responds to all important job functions.
Work with a high level of attention and mental needs, including the ability to precisely set priorities and process.