LEVEL UP YOUR CYBERSECURITY GAME

As a CyBourn IR / Forensics Consultant you will join part of an industry leading team where you will be focused on providing incident response, threat analysis, and program management to our client base. You will be responsible for incident response and threat analysis process development for customers, as well as using your incident response skills to help identify and contain security breaches.

You will also brief senior executives on threats in their environment and their industry, based on CyBourn’s wealth of threat intelligence. We encourage giving back to the community and strongly support sharing of expertise through authoring whitepapers, developing free tools, and speaking at conferences.

The DevSecOps engineer is a senior engineering role to help support, secure, manage and deploy solutions that support CyBourn’s client objectives. The role is highly technical, and candidates must possess a solid understanding of information security, cloud infrastructure, software and various reference architectures. The role also requires an understanding of clients’ business goals, product strategy and operational requirements in a fast-paced environment. The DevSecOps engineer supports continuous integration and continuous deployment (CI/CD) initiatives and is an integrated team member working with software developers, product engineers, cybersecurity engineers and systems administrators. The DevSecOps engineer acts as a liaison with business stakeholders to understand the strategy and execution outlook. The role is heavily security-focused and ingrained in the CI/CD pipeline automation to deliver security and privacy by design principles and validation throughout the software lifecycle.

DevSecOps engineers have a strong work ethic, perform analytical and critical thinking, and are masterful at meeting change requests on demand. They are expected to work well with business units and possess superior listening and communication skills, in addition to expected technical expertise. DevSecOps engineers embody security-first principles, constantly assess the threat landscape and adapt quickly to manage enterprise risk, as well as integration, configuration and deployment requirements.

A successful Red Team consultant at CyBourn should possess a deep understanding of both information security and computer science. They should understand basic concepts such as networking, applications, and operating system functionality and be able to learn advanced concepts such as application manipulation, exploit development, and stealthy operations. This is not a “press the ‘pwn’ button” type of job; this career is technical and challenging with opportunities to work in some of the most exciting areas of security consulting on extremely technical and challenging work.

A typical job could be breaking into a segmented secure zone at a financial, education or healthcare institution, reverse engineering an application and encryption method in order to gain access to sensitive data, all without being detected. If you can exploit at scale while remaining stealthy, identify and exploit misconfigurations in network infrastructure, parse various types of output data, present relevant data in a digestible manner, think well outside the box, or are astute enough to quickly learn these skills, then you’re the type of consultant we’re looking for.

At CyBourn, you’ll be faced with complex problem solving opportunities and hands-on testing opportunities on a daily basis. We help our clients protect their most sensitive and valuable data through comprehensive and real world scenario testing. The objective doesn’t end at gaining “domain admin” or “root”; this is expected and is only a starting point.

You are expected to quickly assimilate new information as you will face new client environments on a weekly or monthly basis. You will be expected to understand all the threat vectors to each environment and properly assess them. You will get to work with some of the best red teamers in the industry, causing you to develop new skills as you progress through your career. Are you up to the challenge?

CyBourn ensures the long-term success of our clients by providing talented, passionate, and specialized security consulting expertise. We are looking for motivated consultants with strong customer service skills to help our clients assess, design, and build effective security programs. The successful candidate for the role will be able to guide clients though Cloud security assessments, improvements, and migrations while driving overall Cloud strategy.

As a Cloud Strategy Consultant, you are responsible for developing and overseeing a cloud computing strategy for our customers. This includes cloud adoption plans, cloud application design, and cloud management and monitoring. The cloud strategist will provide customers with industry best practice and insight regarding cloud application architecture and deployment in cloud environments. The successful candidate will possess strong consulting skills, be adept in leading multiple projects under tight deadlines, and possess in-depth experience in security event monitoring, cyber threat intelligence, and/or computer incident response. 

The Tier 1 Security Analyst is responsible for monitoring a 24x7x365 coordination center by responding to alerts, notification, communications and providing incident response activities such as tracking the incident, communication with stakeholders, remediation and recovery actions and reporting pertaining to security incidents.

The analysts follow standard operating procedures for detecting, classifying, and reporting incidents under the supervision of Tier 2 and Tier 3 staff.

As part of the Incident Response team, the Tier 2 Security Analyst is responsible for identifying, triaging, investigating, and responding to security incidents. The analyst will investigate and respond to security incidents escalated from Tier 1 SOC Analysts, conduct in-depth analysis, and identify the root cause of incidents.

The analyst will provide recommendations for remediation, manage security incidents, and collaborate with other security teams to ensure timely and effective incident response. The role requires strong technical skills, knowledge of network and application security, and experience working in a security operations center. Tier 2 SOC Analyst must also have strong communication, problem-solving, and analytical skills.