Cybersecurity Dfir Analyst

Tasks/Responsibilities

The DFIR analyst plays a key role in managing security incidents, conducting digital forensic investigations, and improving response processes. They are involved in detecting, analyzing, and swiftly resolving cyber incidents while proposing solutions to enhance system and process security for external clients.

MORE PRECISELY

• Identify and manage IT security incidents
• Coordinate containment, data recovery actions, and real-time tracking using specialized tools (SIEM, EDR)
• Conduct forensic investigations to identify attacks and document methods used by attackers
• Optimize response procedures, evaluate and deploy forensic tools, and integrate Threat Intelligence information into DFIR processes
• Stay informed about new threats and actively participate in incident simulation exercises
• Train internal teams and clients on best practices

PROFILE

• 3+ years of experience in cybersecurity
• Experience in environments (Windows, Linux, macOS, Azure, AWS, GCP)
• Strong knowledge of attack techniques (MITRE ATT&CK) and Active Directory environments
• Good knowledge in cybersecurity fundamentals
• Bachelor's degree in computer science or equivalent
• Bilingualism (French required, functional English)
• Certifications (asset): GCIH, GCFA, CHFI