Security Analyst : Forensics and Remediation

Mjolnir Security - Toronto, ON (30+ days ago)

Apply Now

We are looking for security analysts to join our forensics team. You will assist our customers to investigate how their network was hacked and to repair/investigate their network and remove all traces of the intrusion. In addition to this you will also collect evidence from intrusions that will be part of the forensic investigation. You will need to determine how the intrusion occurred and then collect all IOC’s (indicators of compromise) and share this data with our product team in a structured way.

General requirements:

  • You must be highly technical and be comfortable with a wide range of open source tools.
  • Excellent written and verbal communication skills.
  • You must work well in a team.
  • You must be nimble, be able to come up with creative solutions to challenging problems and must have a mature approach to problem solving.
  • Attention to detail.

Note: Applicants who can work weekends will be given priority consideration.

If you’re passionate about information security and would like to help secure the world, this is your dream job. We have a friendly, highly capable team with a sense of humor who move fast. We take our team’s family time seriously and don’t ask you to work long hours if we can avoid it (we almost always can). Our entire team works remotely using Slack for casual interaction so you can live practically anywhere in the World as long as you have an Internet connection. Mjolnir is high growth, but we are not a startup. The company is still controlled by the founders, we are profitable and have been for several years. So you will enjoy the rush of high growth but you won’t have to risk working for a company that is controlled by venture capitalists or may not be here tomorrow.

REQUIREMENTS

At Mjolnir, ‘trust’ is the attribute we value most highly among our team members. We need to know that you can grab a task from a support ticketing system, communicate clearly with our customers and see the task to completion with excellent attention to detail.

We don’t micromanage and we trust that you will be able to see tasks through to completion and communicate with your fellow team members when needed or ask for help when needed. It is a fast paced real-time environment with new challenges daily.

The specific skills we require for this position are:

  • At least 5 years of experience administering LAMP systems.
  • Ability to program in PHP and Javascript. Other languages like Python a strong plus.
  • Understanding of SQL and ability to use the mysql client.
  • Experience investigating hacked networks, determining how the intrusion occurred and removing the intrusion and restoring the network and systems to a fully functional state.
  • An understanding of all major vulnerability types and the ability to explain them to a customer.
  • Ability to analyze web log files and determine how an intrusion occurred.
  • Must be able to use Linux shell tools like grep, find and any other utility that can assist with investigation and remediation.
  • An understanding of regular expressions is a strong plus.
  • Experience with Big Data analytics is required.
  • You must be well versed in information security and any certifications you already have in penetration testing or forensics are a strong plus.

Job Type: Full-time

Salary: $60,000.00 to $75,000.00 /year

Location:

  • Toronto, ON (Preferred)

Language:

  • English (Preferred)