DFIR Consultant at Tokio Marine HCC

, , United States -

Full Time

Start Date

Immediate

Expiry Date

21 Mar, 26

Salary

0.0

Posted On

21 Dec, 25

Experience

2 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Digital Forensics, Incident Response, Cybersecurity, Forensic Analysis, Communication, Triage, Containment, Eradication, Recovery, Scripting, Automation, EDR Tools, SIEM Technologies, Analytical Skills, Organizational Skills, Time Management

Industry

Insurance

Description

About Vector3 Vector3, Inc., is an incident response firm supporting TMHCC Cyber and Professional Lines Group (CPLG). Vector3 specializes in responding to Business Email Compromise (BEC) and Ransomware incidents, helping insured organizations investigate, contain, and recover from cyber events. As a DFIR Consultant at Vector3, you will provide critical technical expertise in digital forensics and incident response for TMHCC insureds. You’ll conduct forensic analysis, support containment and recovery, and help insureds understand the scope and impact of cyber incidents. Working closely with senior consultants and analysts, you’ll balance investigative precision with effective communication, ensuring timely and accurate results that help clients resume operations securely. Key Responsibilities Teamwork and Client Engagement Collaborate with peers and senior consultants to support investigation and response activities. Communicate technical findings clearly to both technical and non-technical audiences. Maintain positive, professional relationships with insureds and carriers. Contribute to a team culture of innovation, continuous learning, and technical excellence. Incident Response Operations Execute assigned tasks during all phases of cyber incident response: triage, containment, eradication, recovery, and lessons learned. Perform forensic imaging, log collection, and analysis of affected systems, cloud platforms, and endpoints. Support development and maintenance of incident response documentation and process improvement. Assist in root-cause analysis and identification of attacker TTPs. Technical Experience Conduct digital forensic investigations using tools such as ELK, Axiom, EnCase, FTK, or open-source alternatives. Analyze endpoint and network telemetry (Defender, SentinelOne, CrowdStrike, etc.). Stay current with emerging threat actor techniques, malware variants, and forensic methodologies. Script or automate forensic tasks (PowerShell, Bash, Python) when applicable. Competencies Planning • Follow work plans, established timelines, and predefined goals for assigned work. • Meet commitments on deadlines. Communication • Communicate activities, results, and observations with employees and management as appropriate. Cost Management • Identify areas for improvement in existing business practices. • Perform work thoroughly in a cost-efficient manner and at a high productivity level. Business Controls and Policies • Comply with all corporate policies and procedures. • Report any breakdowns in controls to management. • Conduct all activities in a safe manner. People Management • No people management responsibility. Education 4 Year / Bachelors Degree in Cyber security, Computer Science, Information Technology or related field Certifications, Licenses, and Designations Advanced certifications such as CISSP, CISM, GCFA, GCFE, GREM, GCIH, CFCE, or CCE are preferred. Certifications in cloud security or forensics (AWS Security, Azure Security Engineer, Microsoft 365 Defender Expert) are advantageous. Experience 2 Years professional experience in incident response, digital forensics, or cybersecurity operations Proven track record supporting investigations in Windows, Linux, or cloud environments. Knowledge of digital forensic artifacts, data preservation, and evidence handling. Experience with EDR tools (Defender, SentinelOne, CrowdStrike) and SIEM technologies. Understanding of frameworks such as NIST CSF, PCI DSS, ISO 27001. Strong analytical, organizational, and time-management skills. Excellent written and verbal communication abilities. Your success is our priority. In a world that is rapidly changing, TMHCC enables you to take on opportunities with confidence. At Tokio Marine HCC, we pride ourselves on hiring the smartest, most conscientious people, who want to make a difference no matter their background. And then we give them the support and trust they need. We’re always looking for curious, creative transformative thinkers who want to change the status quo and have a passion for doing the right thing. If this is you, then we want you on our team.

Responsibilities

As a DFIR Consultant, you will provide technical expertise in digital forensics and incident response, conducting forensic analysis and supporting containment and recovery efforts. You will collaborate with senior consultants and analysts to ensure timely and accurate results for clients.