Incident Responder / Digital Forensics Examiner (remote-US only) - Military veterans preferred

Soteria LLC


  full-time   part-time   employee   contract

United States

Job description

Detection and Response Team

Headquartered in beautiful Charleston, South Carolina, Soteria is a rapidly growing cybersecurity firm that provides tailored consulting, advisory, and managed detection and response services.  

At Soteria, our incident response professionals work directly with our clients to recover from incidents as quickly and effectively as possible. We strive to be the steady hand that guides our clients when they are having their worst day.  Once the incident is over, we continue our partnership to assist our customers in implementing the changes needed to prevent repeat incidents in the future.  


As a Digital Forensics and Incident Response Consultant, your responsibilities include:

  • Provide clients with advice and guidance as they navigate the incident response and recovery process.
  • Triage, collect, and analyze forensically valuable data from the available sources to determine the scope and severity of security incidents.  
  • Manage incident response engagements to guide clients through the response process and ensure that the engagement is tailored to meet their specific response needs
  • Documenting and presenting findings and recommendations to clients in a professional manner.
  • Maintaining relationships with clients post-engagement in order to assist and advise on longer-term remediation efforts.
  • Maintaining competence in security trends, technologies, and practices through self-study and attendance of industry events.
  • Working with Soteria’s managed detection and response team to improve detection capabilities
  • Training and mentoring consultants and analysts in order to build the company's overall capacity and capability.


  • 2+ years of digital forensics, incident response, security operations, or other relevant experience
  • Strong leadership and crisis management skills 
  • Experience leading 
  • Strong, working knowledge in the following areas:
  • Forensically valuable artifacts available on Windows, Linux, Unix, and MacOS operating systems
  • Networking concepts, protocols, and architecture
  • Disk forensics tools such as Axiom, FTK, etc.
  • SIEM tools as it relates to searching and extracting relevant data for incident investigations
  • Programming/Scripting experience as needed to facilitate investigations and remediation efforts
  • Strong written and verbal communication skills.
  • Must be able to communicate details of findings to both technical and non-technical clients
  • Must be able to deliver detailed written reports at the conclusion of every client engagement
  • Must have ability to travel as necessary for role including travel on short notice


  • Medical, Dental, and Vision covered 100% for Employee and %50 for family members.
  • Flexible work hours
  • Paid time off of 24 days with an additional 10 paid holidays
  • Furthering education / professional development opportunities
  • HSA employer funded at single level
  • 401K optional

Candidates must be legally authorized to work full time within the United States and able to pass a background check. Some candidates may require more extensive background checks based on project. 

Powered by JazzHR