Senior Incident Response Analyst
C
Coalition, Inc.Cybersecurity Insurance
Any location, Australia, follow-the-sun coverage modelFull-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Required Skills
- Python
Requirements
- Substantial hands-on DFIR experience, including leading complex investigations as primary analyst.
- Strong technical foundation in Windows and Linux forensics.
- Proven experience with Microsoft 365 email and cloud forensics.
- Ability to investigate web and application compromises (e.g., WordPress).
- Experience working with network, perimeter, and authentication logs, plus EDR.
- Excellent written and verbal communication skills.
- Familiarity with Australian privacy and regulatory requirements.
- Programming or scripting experience (e.g., Python, PowerShell) is a plus.
Responsibilities
- Lead end-to-end incident response engagements, from intake and scoping through evidence collection, analysis, containment, remediation guidance, and closure.
- Perform digital forensics across endpoints, email platforms, networks, websites, and cloud services to reconstruct attacker activity and determine scope and impact.
- Investigate Microsoft 365 and other cloud environments for account compromise, data access, mail flow abuse, and configuration weaknesses.
- Produce clear, defensible forensic reports and executive-ready summaries.
- Facilitate client and counsel calls, including findings briefings, remediation recommendations, and post-incident lessons-learned discussions.
- Contribute to Australia-specific IR processes, playbooks, and active services, and participate in global follow-the-sun coverage model.
View Full Description & ApplyYou'll be redirected to the employer's site
