Principal Cyber Security Incident Handler/DFIR
Listed on 2026-01-27
-
IT/Tech
Cybersecurity, Data Security, Information Security, IT Consultant
Overview
A leading healthcare company is seeking a Principal Cyber Security Incident Handler to join their dynamic team. You will be responsible for utilizing incident response, investigative and forensics skills to respond to security breaches, implement containment measures, and investigate impacts. You use forensic best practices and provide chain of custody service for criminal investigations involving issues such as fraud, employee situations, etc.
You evaluate artifacts for malicious activity, identify attack vectors, exploit methods, perform RCA and recommend mitigation strategies, and help minimize the impact on business and medical services.
This role is 100% Remote but candidates must reside in California, Oregon, Washington, Colorado, Georgia, Virginia, Maryland, or Washington DC.
This is a 12 month contract with opportunity for full time conversion or contract extension.
Qualifications- 10+ years of cyber security digital forensics
- Expertise in security controls such as EDR, forensics tools, intrusion prevention, authentication, data collection and analysis, and SIEM
- Strong understanding of malware and attacker techniques
- Ability to perform deep-dive analysis to determine root cause and full impact of incidents
- Strong communication and documentation skills
- Ability to respond quickly
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).