Incident Response & Forensics Specialist

QED National

A leading transportation authority located in New York, NY is looking for an Incident Response & Forensics Specialist for a 9 month contract.

Please note that this position allows for remote work, in proximity to NYC Metro Region is required

Pay rate range: $61.00/hr – $70.00/hr (0-3 yrs experience)

Pay rate range: $92.00/hr – $101.00/hr (4-6 yrs experience)

Requirements and skills

  • Bachelor’s degree in Computer Science, Information Services, or IT Security related field –Or- A satisfactory equivalent with at least 3 years of IT-Security experience.
  • Minimum of 3 years of experience Tier 1 & 2 support for cyber security operation center.
  • Minimum of 3 years’ experience with performing incident response functions & investigations
  • Candidate must possess adequate skills with multiple programming languages and must demonstrate that they can reverse engineer malware code.
  • The Candidate must have experience in Cyber Security Incident Response.
  • Must be proficient with UNIX, Windows, OSX, and Mobile Devices.
  • Candidate must be proficient with the administration of Office365 and all its security features.
  • Excellent communication skills
  • Strong experience with digital forensic tools
  • Strong understanding and analysis of code such as Powershell, PERL, Python

Preferred Skills

  • Cybersecurity certifications (preferred)
  • Experience with OT & PCI technologies (preferred)


  • Seeking a highly technical Incident Response & Forensics Specialist. This position is a part of the IT Threat Intelligence group within the Cyber Security Operations Center and will be expected to provide direct support to the 24/7 Cyber Security Monitoring group as needed.
  • Serving as a primary point of contact for agency CSOC & MSSP
  • Cybersecurity Incident escalations
  • Interfaces directly with vendors & third parties for notified/observed compromises
  • Forensics on memory, disks, and logs
  • Malware analysis (dynamic & static)
  • Involvement in full incident response lifecycle
  • Processes evidence in accordance with Chain of Custody
  • Creates Incident reports to brief to executive management
  • Provide recommendations to prevent similar incidents
  • Assist the Threat Intelligence group in other functions including
  • Threat Intelligence / Threat Hunting
  • Threat Readiness
  • Cyber Content Engineering & Automation
Job Overview

Receive job alerts twice per week:

Your subscription could not be saved. Please try again.
Your subscription has been successful.

Choose one or more global alerts or browse to the USA and UK alert pages:

USA Specific Job Alerts
UK Specific Job Alerts

Our marketing platform's terms of use