Associate, Cybersecurity Incident Response

Ankura is a team of excellence founded on innovation and growth.
- Practice Overview:

- Our diverse team is comprised of seasoned security veterans, including professionals from the intelligence community and leading private security firms, alongside talented early-career professionals. This unique blend of experience and fresh perspectives allows us to offer insightful and innovative solutions.
- Leveraging our combined knowledge, we assess cyber risk landscape, identify vulnerabilities, and fortify your infrastructure to withstand even the most sophisticated attacks. When incidents occur, our team provides immediate and decisive responses, minimizing damage and ensuring swift resolution.
- The Role:

- As an Associate within our Data & Technology segment, you will play a vital role in tackling our clients' critical information security challenges. You will be at the forefront of incident investigations, conducting forensic analysis, and collaborating with our team to deliver comprehensive solutions that mitigate risks and restore trust.
- Key Responsibilities:
- Lead and participate in complex security incident investigations involving computer crimes, requiring meticulous log and forensic analysis, along with malware identification and mitigation.-
- Collect, analyze, and interpret data from various sources, including intrusion detection systems, firewall logs, network traffic logs, and host system logs, to evaluate the scope of potential breaches and information exfiltration.-
- Conduct thorough forensic investigations to identify the presence of malware, understand its capabilities and actions, and trace its impact on the affected systems.-
- Demonstrate proficiency in conducting security investigations across diverse operating systems, including Linux, Apple, and Windows environments.-
- Articulate complex technical findings and recommendations in clear and concise language for client communications, including written reports and presentations tailored to senior-level audiences.- Your Qualifications:
- Bachelor's or Master's Degree in Computer Science, Cyber Security, MSIS, or equivalent coupled with 3-6 years of relevant experience in incident response.-
- Proven ability to communicate effectively and tailor your message to diverse audiences, including legal counsel, high-level management, and C-suite executives.-
- Experience working with non-Windows environments (Linux, Unix, Mac) and proficiency in utilizing command-line operations and scripting languages like Python, PowerShell, Perl, or Bash.-
- Demonstrated experience in an investigative capacity, either within law enforcement or incident response roles.-
- A collaborative spirit and a strong desire to contribute to a team-oriented environment.-
- Ability to effectively analyze and correlate events from multiple sources to create a comprehensive timeline of incidents across various endpoints.-
- Exceptional analytical skills, encompassing both quantitative and qualitative methodologies, along with meticulous attention to detail and strong note-taking abilities.-
- Passion for incident response and a continuous drive to improve expertise through self-learning and professional development opportunities.-
- Proven leadership skills and the ability to mentor and guide junior team members.-
- Formal training in digital forensics and incident response methodologies.- Why Ankura:
- Join a team of passionate and innovative experts protecting clients from the threat landscape.-
- Work on cutting-edge projects that make a real impact on businesses and the world at large.-
- Enjoy a collaborative and supportive work environment that fosters professional growth and pathways for advancement.-
- Receive competitive compensation and benefits, including opportunities for travel and training.-
- We are committed to providing our employees with the resources and support they need to succeed and make a lasting impact.#LI-JK1