×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

DFIR Engineer

Job in Dubai, Dubai, UAE/Dubai
Listing for: NETS-International Group
Full Time position
Listed on 2026-01-10
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 120000 - 200000 AED Yearly AED 120000.00 200000.00 YEAR
Job Description & How to Apply Below

We are looking for an Incident Response Engineer with strong hands‑on experience in host‑based investigations, compromise assessments, and forensic triage across diverse platforms. The ideal candidate will be capable of conducting investigations in Windows, Linux, and Unix environments, with additional exposure to container‑based infrastructures.

Key Responsibilities
  • Perform compromise assessments and large‑scale artifact triage across Windows and Linux endpoints and servers.
  • Lead and support host‑based investigations
    , including log analysis, timeline reconstruction, and malware behavior identification.
  • Utilize, customize, and optimize UAC scripts or related automated investigation tools.
  • Conduct incident response activities in containerized environments such as Docker and Kubernetes
    , including analysis of container logs, images, and runtime behavior.
  • Investigate security incidents and perform forensic analysis on Unix‑based systems
    .
  • Coordinate with SOC, threat intelligence, and platform teams during incident containment and remediation.
  • Document investigation findings, root cause analysis, and technical recommendations.
Required Skills & Experience
  • Hands‑on experience in compromise assessment and enterprise‑scale artifact triage.
  • Strong background in host‑based investigations across Windows, Linux, and Unix platforms.
  • Practical experience using or customizing UAC scripts or similar automation tooling.
  • Exposure to container ecosystems (Docker/Kubernetes) and their IR workflows.
  • Working knowledge of DFIR tools (KAPE, Sysinternals, Velociraptor, OSQuery, ELK/Splunk, etc.).
  • Understanding of malware behavior, persistence techniques, and endpoint telemetry.
  • Strong analytical, communication, and reporting skills.
  • 9 - 12 years of experience required.
Preferred Qualifications
  • Certifications such as GCIH, GCFA, GCFE, CHFI, or relevant security credentials.
  • Familiarity with cloud environments (AWS, Azure, GCP) is a plus.
  • Scripting knowledge (Python, Power Shell, Bash) beneficial for automation.
  • Bachelor’s degree in Cybersecurity, Computer Science, or Information Technology
    .
Seniority Level

Director

Employment Type

Contract

Job Function

Engineering, Information Technology, and Science

Industries

IT Services and IT Consulting, Computer and Network Security, and Security and Investigations

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search