Cybersecurity Consultant – Incident Response and Forensics

Who We Are

At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.

The Role

We are seeking a seasoned Cybersecurity Incident Response and Forensics Analyst to lead and enhance our capability to detect, respond to, and recover from cybersecurity incidents as a service to customers. This role demands deep technical expertise, strategic thinking, and hands-on experience in digital forensics, threat analysis, and incident response. The analyst will serve as a key advisor to leadership and drive continuous improvement in our cyber defense posture.

Experience dealing with customers, both internal and external, at both an operational and executive level is required.

This role requires on-call scheduling and potential travel on short notice.

Who You Are

You're good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you're open and borderless – naturally inclusive in how you work with others.

Required Skills and Experience

• 5+ years of relevant experience
• Incident Response Leadership
• Lead and coordinate end-to-end incident response activities, including detection, triage, containment, eradication, and recovery.
• Act as the primary escalation point for critical security incidents and breaches.
• Develop and maintain incident response runbooks, escalation protocols, and communication plans.
• Collaborate with legal, compliance, HR, and executive teams during major incidents.
• Digital Forensics & Threat Analysis
• Conduct forensic investigations across endpoints, servers, cloud platforms, and mobile devices.
• Strategy & Program Development
• Design and implement improvements to the incident response program, including automation and orchestration.
• Evaluate and integrate new tools and technologies to enhance detection and response capabilities.
• Develop threat models and risk assessments to proactively identify vulnerabilities and threats.
• Contribute to red/blue/purple team exercises and tabletop simulations.
• Collaboration & Communication
• Partner with SOC analysts, threat hunters, vulnerability management, and IT operations teams.
• Provide technical guidance and mentorship to junior staff and cross-functional teams.
• Deliver detailed technical reports and executive-level summaries post-incident.
• Represent the organization in external forums, industry groups, and regulatory engagements.
• Perform memory analysis, disk imaging, log correlation, and malware reverse engineering.
• Analyze attack vectors, indicators of compromise (IOCs), and tactics, techniques, and procedures (TTPs).
• Maintain chain-of-custody and evidence handling procedures for legal and regulatory compliance.

Preferred Skills and Experience

•Past experience in assisting stakeholders in quantifying risks and developing mitigation and remediation strategies

•Understanding and application of NIST Control Framework, Critical Security Controls, and other related regulatory and compliance frameworks

•Experience with cloud security, cyber resiliency/incident management, Zero Trust, network/EDGE security, and emerging technologies such as IoT and AI

Being You

Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.

What You Can Expect

With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations.  At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.

Get Referred

If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.