Overview
Senior Consultant, Cyber Response (Technical) Jobs in London, England, United Kingdom at Control Risks
Title: Senior Consultant, Cyber Response (Technical)
Company: Control Risks
Location: London, England, United Kingdom
This is a Senior Consultant role with responsibility for managing and delivering Control Risks cyber response threat hunting solutions. This involves managing our threat hunting engagements and where needed leading the technical aspects of cyber response cases.
This role will report to the Associate Director of Cyber Response (Technical) and work closely with the Cyber Crisis Management team. The successful candidate will have a strong technical skill set and a deep understanding of current and emerging threat actors.
Tasks And ResponsibilitiesThreat hunting
Lead all threat hunting engagements to evaluate an attacker’s spread through a system and network, anticipating and thwarting further attacker activity across endpoints, cloud and network infrastructure
Develop and enhance our Threat Hunting Standard Operating Procedures ensuring they reflect client requirements and align with our Cyber Threat Intelligence team
Work with our Cyber Response Technology and Automation lead to implement the tooling required to effectively threat hunt
Implement a quality assurance program to ensure threat hunting engagements proactively identify and mitigate risk
Leverage Control Risks and external data sources to research threats, vulnerabilities, and intelligence on various attackers and attack techniques, to form hunting playbooks and mitigation steps.
Work closely with our Cyber Threat Intelligence team and share threat hunting playbooks with the incident response team.
Incident response
Overseeing host and network based investigations. Leveraging the Digital Forensics Incident Response (DFIR) team to deliver the work you are overseeing.
Ownership of the lifecycle of a cyber incidents including identification, containment, eradication and recovery.
Threat hunting using EDR Tooling to evaluate an attacker’s spread through a system and network, anticipating and thwarting further attacker activity.
Perform live compromise assessments for organisations who suspect a compromise.
Detect and hunt unknown live, dormant, and custom malware in memory across multiple systems in an enterprise environment.
Demonstrate a deep understanding of both existing and emerging threat actors, as well as experience identifying rapidly changing tools, tactics and procedures of attackers.
Work closely with the Cyber Threat Intelligence team to identify where they could benefit from the technical information acquired during Cyber Response cases. Also identify and implement where threat intelligence can be leveraged through tooling and automation.
Advise on the safe technical recovery of an organisations IT systems balancing the need to understand what has happened but speed up recovery.
Client Management
To support with client relationship management facilitating where appropriate introduction and provision of additional technical Control Risks services.
Working closely with Cyber Response Management to ensure a cohesive go-to-market approach.
Ensure tooling and automation developed is customer friendly to deploy and use. Be responsible for any customer queries that arise from the use of the technology and automation.
Reporting
Provide situation reports and other significant case related material to the client and the Director of Cyber Response.
Provide documentation to the relevant consultants in sufficient time to allow review and feedback, before submitting to a c…
