View all jobs

Consultant - Incident response

Laval, Québec
About us
OKIOK is a cybersecurity innovation firm that operates on different levels: consulting, solution development, penetration testing and incident response. We recruit the best in the industry to build a dynamic team that uses the latest technologies to serve our clients and counter emerging cyberthreats.

Here are some good reasons to become an okiokois:
  1. Competitive salaries with annual bonus
  2. Enjoy schedules that value work-life balance, and a committee ensuring well-being and job satisfaction
  3. Being in a relaxed environment, surrounded by cybersecurity enthusiasts
  4. Working on a variety of one-of-a-kind projects
  5. Banking your hours, never work at your expense
  6. Access paid training and certifications
  7. Participate in CTFs with the team each year
  8. Working with cutting edge technologies 
  9. Work with recognized experts and develop your skills through mentoring
  10. Game night, 5@7, team activities, barbecue and more!

Job description 
Reporting to the Director of Professional Services, the specialist consultant in incident response  has relevant and recent experience in information security and more particularly in intrusion tests, in response to incidents, in forensics or in networks administration. He acts as an information security expert in major mandates. He performs his duties, among other things, by putting in place tools and / or methods ensuring the maintenance and sound management of this specialization among the company's clients.

In addition to having general expertise in information security and carrying out the corporate activities expected for this type of position, the advisor demonstrates a strong capacity for analysis and problem solving.

Now here's what to expect:
  • Act as an expert in computer incident response
  • Advise and support the client in the response to incidents;
  • Participate in incident response mandates by performing log analysis, system and network forensics analysis, and malware analysis;
  • Participate in all stages of the incident response lifecycle, including: assessment, analysis, remediation, reporting, and tactical communications;
  • Ensure the integrity of evidence during incident response;
  • Perform research on forensics evidence, malware behavior analysis and threat hunting;
  • Perform eDiscovery analyzes;
  • Prepare technical and executive reports;
  • Participate in the development activities of OKIOK's internal tools for incident response and monitoring;
Provide consulting services in the fields of IT security according to your specific expertise
  • Coordinate and participate in the performance of security audits;
  • Identify IT security solutions, and their impacts, based on business needs;
  • Put in place effective protection mechanisms adapted to clients' needs;
  • Write / implement plans, policies, standards and security management processes;
  • Review the content and format of all documentation submitted by a team member to ensure compliance with relevant standards, specifications and required quality ("Peer Review").
Support professional services management processes
  • Participate in the preparation of service offers;
  • Participate in activities relating to the definition of the professional services offered or that the company wants to offer;
  • Support, if needed, technical resources to transmit and / or upgrade the knowledge required to meet performance expectations;
  • Support, if needed, the resources assigned to business development and / or other relevant internal stakeholders to support them during their meetings with clients.
Qualifications required
  • Knowledge of malware techniques and attack techniques (eg code injection, DGA, hooks, etc.);
  • In-depth knowledge of Windows, Mac, Linux systems;
  • In-depth knowledge of cloud computing environments;
  • Knowledge of malware analysis methods;
  • Knowledge of Reverse Engineering (an asset);
  • Experience with Sysinternals tools, Kali Linux, Remnux, Wireshark, Metasploit, Sandbox, Volatility, debuggers, HTTP proxies, IDA Pro, etc.) (an asset);
  • Programming skills (JavaScript, python, C / C ++, etc.);
  • Good knowledge in at least three (3) of the following areas:
    • Web applications;
    • Wireless networks (Wifi);
    • Mobile applications;
    • Security of operating systems;
    • Database security;
    • Security of virtualization infrastructures;
    • Network technology security;
    • Security of cloud computing environments;
    • Social engineering;
  • GCIH, ECIH, IHRP, CSIH, CIHE certifications (an asset);
  • Undergraduate university degree with specialization in telecommunications, computer science or equivalent;
  • Recent experience in his specialty;
  • Strong problem-solving skills
  • Ability to interact with representatives from different backgrounds;
  • Excellent sense of organization, analytical skills and synthesis;
  • Ability to make quick decisions in a changing environment and to demonstrate innovation;
  • Ability to write documents in a clear and structured manner;
  • The ability to work in a team;
  • Availability outside office hours;
  • Ability to move quickly to the client, as needed;
  • Bilingualism (FR/ENG), spoken and written.

Additional information
Flexible hours
37.5 hour work week
Group insurance and RRSP
Free parking
Expense account for travel and cell phone bill

Sarah Vigeant
Responsable des ressources humaines
450 681-1681 poste 245

More Openings

Spontaneous Application

Share This Job

Powered by