Incident Response Security Consultant

• Bachelor's degree in Computer Science, a related technical field, or equivalent practical experience.
• 2 years of investigative experience with network forensics, malware triage analysis, cloud forensics, or disk and memory forensics.
• 2 years of experience working end-to-end in Incident Response investigations, analysis, or containment actions.

• Certifications in cloud platforms.
• Experience in security competitions, Capture the Flags (CTFs), or testing platforms such as Hack the Box, TryHackMe, Overthewire, etc.
• Ability to communicate investigative findings and strategies to technical staff, executive leadership, legal counsel, and internal and external clients.
• Excellent time and project management skills.

As a Security Consultant, you will be responsible for helping clients effectively prepare for, proactively mitigate, and detect and respond to cyber security threats. Security Consultants have an understanding of computer science, operating system functionality, networking, cloud services, corporate network environments, and how to apply this knowledge to cyber security threats.

You could work on engagements including assisting clients in navigating technically complex and high-profile incidents, performing forensic analysis, threat hunting, and malware triage. You may also test client networks, applications, and devices by emulating the latest techniques to help them defend against threats, and will be the technical advocate for information security requirements. You will articulate and present complex concepts to business stakeholders, executive leadership, and technical teams, and lead complex engagements alongside cross-functional teams.

As an Incident Response Consultant, you will provide incident response, assessment, transformation, managed detection and response, and training services. You will help organizations detect and respond to threats, reducing the impact of business risks before, during, and after incidents. Your role involves quick and effective resolution of security incidents, including investigation, containment, remediation, and crisis management. You will work on engagements assisting clients in navigating complex incidents, forensic analysis, threat hunting, and malware triage.

Part of Google Cloud, Mandiant is a leader in cyber defense, threat intelligence, and incident response services. Our expertise includes frontline experience with breaches, nation-state threat intelligence, machine intelligence, and security validation, making us highly knowledgeable about today's advanced threats.

• Collaborate with internal and customer teams to investigate and contain incidents.
• Recognize and document attacker Tools, Tactics, and Procedures (TTPs) and Indicators of Compromise (IOCs) for current and future investigations.
• Conduct host and network forensics, log analysis, and malware triage to support incident response investigations.
• Automate threat tracking and discovery using internal and external data sources. Investigate impacts to customers to determine if new detections or notifications are needed.
• Develop and deliver comprehensive reports, training, and presentations for technical and executive audiences.

Google is an equal opportunity employer and is committed to diversity and inclusion. We consider all qualified applicants regardless of race, color, religion, sex, national origin, sexual orientation, age, disability, or veteran status. For accommodations, please complete our Accommodations for Applicants form.