Senior Investigator
工作描述
At Accenture, you can bring your innovative vision to the heart of change to transform entire market sectors. Shape the future of business and technology by developing cutting-edge solutions that create new value.
Your role and opportunities
Join our international network of talents in the Incident Response field. You will work with innovative technologies on exciting projects, developing solutions to manage data securely. Specifically, you will be able to:
Responsibilities:
- Perform incident response to cybersecurity incidents, including but not limited to APT & Nation State attacks, Ransomware infections and Malware outbreaks, Insider Threats, BEC, DDOS, Security and Data breach, etc.
- Conduct in-depth investigations of cybersecurity incidents, identifying the root cause, the extent of the impact, and recommended actions for containment, eradication, and recovery, and providing a final report that contains recommendations on how to prevent the same attack in the future by strengthening security posture.
- Collaborate with cross-functional teams to gather information, coordinate incident response efforts, and communicate findings to relevant stakeholders, including management and legal teams.
- Perform digital forensics examinations on various digital devices (workstations, servers, mobile devices, etc.) to collect, analyze, and preserve evidence related to security incidents or policy violations.
- Develop/Update incident response plan, playbooks, process, and process documentation to ensure standardized incident response procedures.
- Participate in threat hunting activities, proactively seeking out and identifying potential security threats and weaknesses.
- Assist in implementing and fine-tuning security tools and technologies to enhance threat detection and incident response capabilities.
- Conduct training sessions and workshops to educate employees on cybersecurity best practices and incident response procedures.
- Work closely with the Nordic clients to ensure quality relationships.
#LI-EU
职位要求
If you share our passion for cybersecurity and have the following characteristics, we are looking forward to meeting you:
- Knowledge of file and memory forensics techniques and commonly used tools such as EnCase, Axiom, Autopsy, Kape, Plaso, Volatility, and FTK Suite.
- Good command of incident management and response processes and procedures.
- In-depth knowledge of cybersecurity operations, security monitoring, EDR and SIEM tools, including Crowdstrike, Microsoft Defender for Endpoint, TrendMicro VisionOne, and Splunk.
- Experience in conducting static or dynamic malware analysis, using solutions such as IDA Pro, OllyDbg, REMnux distro, and other disassemblers/debuggers.
- Detailed knowledge of Windows and Unix-based operating systems and administrative tools.
- Proficiency in English & Swedish.
- Ability to pass Security Clearances in Sweden
- Familiarity with disk and memory forensic analysis (Windows, Unix, or Linux environments).
- Knowledge of security controls such as authentication and identity management, network architectures enhanced for security, and application-based controls (including Windows, Unix, and network equipment).
- Proficiency in network traffic analysis and protocols using tools such as Wireshark.
- Interest to work closely with the clients, building relationships.
Please expect slower feedback on your application due to summer vacation period, until August 11.
//Accenture Security Recruitment Team
