Sygnia Logo

Sygnia

Incident Response Expert

Reposted Yesterday
Remote
Hiring Remotely in United States
Mid level
Remote
Hiring Remotely in United States
Mid level
Lead and perform end-to-end forensic investigations and incident response for complex cyberattacks. Conduct log, host, network, memory, and malware analysis; threat hunt for APTs; identify IOCs/TTPs; use and improve investigation tooling and playbooks; communicate findings and recommendations to technical and executive stakeholders.
The summary above was generated by AI
Description

About Sygnia

Sygnia is a premier cyber technology and services company providing high-impact incident response, cyber resilience consulting, and threat hunting for leading organizations across the globe. Trusted by Fortune 100 companies and government entities alike, Sygnia draws its strength from a team of elite professionals with backgrounds in military-grade cyber operations and the global cybersecurity industry.

Sygnia is rapidly expanding its presence in the United States, growing our incident response capabilities and client base across key industries. Joining now means playing a formative role in shaping our U.S. operations while benefiting from the backing and expertise of an established global leader.

The Role

We are seeking a highly skilled and motivated Incident Response Expert to join our elite global team. In this role, you will lead and participate in complex forensic investigations and incident response engagements involving sophisticated cyberattacks, ransomware events, and nation-state activity. Your expertise will play a critical role in helping Sygnia’s clients understand, contain, and recover from cyber incidents while preserving business continuity and mitigating risk.

What You’ll Do

  • Work with a team to conduct end-to-end forensic investigations, including log analysis, host and network forensics, malware triage, and memory analysis.
  • Support response efforts for major cybersecurity incidents, collaborating closely with internal and external security and IT teams.
  • Perform threat hunting activities in client environments to detect and eliminate advanced persistent threats.
  • Identify Indicators of Compromise (IOCs) and attacker Tactics, Techniques, and Procedures (TTPs) using frameworks like MITRE ATT&CK.
  • Analyze a wide variety of data sources (endpoint, network, SIEM, etc.) to build a clear picture of the attacker’s actions and impact.
  • Leverage and contribute to Sygnia’s internal investigation tools, playbooks, and threat intelligence platforms.
  • Communicate investigation results effectively to both technical stakeholders and executive leadership.
  • Develop and present high-quality technical reports, timelines, and strategic recommendations to clients.
  • Support the continuous improvement of internal methodologies, tooling, and knowledge sharing within the team.
Requirements

What We’re Looking For

  • 3+ years of hands-on experience in incident response, digital forensics, threat hunting, or cyber investigations—whether from the private sector, military, or government.
  • Deep technical understanding of operating systems (Windows, Linux, macOS), file systems, registry and memory structures, and log analysis.
  • Proficiency in network fundamentals and common protocols (DNS, HTTP/S, SMB, etc.) and network traffic analysis (e.g., PCAP review).
  • Experience with tools such as EnCase, X-Ways, FTK, Velociraptor, Splunk, or Wireshark, and EDR platforms like CrowdStrike, SentinelOne, or Microsoft Defender.
  • Competency in scripting or automation (e.g., Python, PowerShell) to support investigations.
  • Familiarity with cloud environments (AWS, Azure, GCP) and related forensic techniques is a plus.
  • Excellent written and verbal communication skills; able to clearly convey complex technical topics to diverse audiences.
  • Strong analytical thinking, attention to detail, and ability to work under pressure in time-sensitive environments.
  • Willingness to travel.

Bonus Points For

  • Industry-recognized certifications (e.g., GCFA, GCIH, GNFA, GCIA, GREM, CISSP).
  • Experience responding to ransomware, business email compromise (BEC), and advanced threat actor incidents.
  • Experience presenting findings to legal counsel, regulators, or board-level stakeholders.
  • Multilingual skills and experience in multinational or cross-cultural environments.
  • A degree in Computer Science, Information Security, or a related field; or equivalent education or training in cybersecurity

Why Sygnia

  • Be part of Sygnia’s continued growth in the U.S., with opportunities to influence how we scale our team, capabilities, and operations in a rapidly expanding market.
  • Work with some of the best minds in cybersecurity on the world’s most high-impact cases.
  • Operate in a fast-paced, elite-tier environment where your technical expertise is trusted and valued.
  • Take part in meaningful, challenging work that directly shapes the outcomes for Fortune 500 organizations.
  • Grow your career while staying hands-on in incident response and mentoring a highly capable team.

Similar Jobs

6 Hours Ago
Easy Apply
Remote
United States
Easy Apply
31-35 Hourly
Mid level
31-35 Hourly
Mid level
Healthtech • Software
Perform evidence-based utilization management reviews, prepare compliant member and provider correspondence, consult with Medical Directors, document clinical determinations, ensure NCQA/CMS regulatory compliance, meet productivity and turnaround targets, support verbal notifications, and drive process improvements.
Top Skills: Google SuitemacOSZoom
6 Hours Ago
Easy Apply
Remote
United States
Easy Apply
260K-280K Annually
Senior level
260K-280K Annually
Senior level
Healthtech • Software
Provide evidence-based medical utilization reviews for orthopedic spine cases, document decisions in Cohere workflows, conduct peer-to-peer provider discussions, meet turnaround and quality standards, and support clinical and operational improvement projects.
6 Hours Ago
Easy Apply
Remote
United States
Easy Apply
110K-125K Annually
Senior level
110K-125K Annually
Senior level
Healthtech • Software
The Compliance Reporting Program Manager will coordinate compliance and regulatory reporting initiatives, manage workflows, and drive cross-functional collaboration for accurate and timely reporting.
Top Skills: SQLTableau

What you need to know about the San Francisco Tech Scene

San Francisco and the surrounding Bay Area attracts more startup funding than any other region in the world. Home to Stanford University and UC Berkeley, leading VC firms and several of the world’s most valuable companies, the Bay Area is the place to go for anyone looking to make it big in the tech industry. That said, San Francisco has a lot to offer beyond technology thanks to a thriving art and music scene, excellent food and a short drive to several of the country’s most beautiful recreational areas.

Key Facts About San Francisco Tech

  • Number of Tech Workers: 365,500; 13.9% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Google, Apple, Salesforce, Meta
  • Key Industries: Artificial intelligence, cloud computing, fintech, consumer technology, software
  • Funding Landscape: $50.5 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Sequoia Capital, Andreessen Horowitz, Bessemer Venture Partners, Greylock Partners, Khosla Ventures, Kleiner Perkins
  • Research Centers and Universities: Stanford University; University of California, Berkeley; University of San Francisco; Santa Clara University; Ames Research Center; Center for AI Safety; California Institute for Regenerative Medicine

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account