Senior Incident Response and Digital Forensics Engineer

Forensics CloudForensics Cybersecurity DFIR

The Security Incident Response Team comprises of our Cyber Threat Intel, Detection development, Forensics, and core IR Team. Acting as the second line behind the Security Operations Centre, they handle the more complex and major incidents that can develop.

We are seeking a skilled Digital Forensics Staff Member to join our Incident Response (IR) team supporting our Security Operations Centre (SOC). The successful candidate will possess a deep understanding of digital forensic principles, incident response methodologies, and cyber security operations.

"We embrace diversity and equality in a serious way. We are committed to building a team with a variety of backgrounds, skills, and views."

You will:

  • Perform digital forensics on cyber security incidents including data breaches, cyber-attacks, and intrusions
  • Collect, document, and manage evidence related to cyber security incidents
  • Analyse data from digital forensics investigations and report findings
  • Collaborate with SOC analysts to align on threat intelligence and incident response
  • Develop and implement new procedures and controls to improve digital forensics operations
  • Maintain knowledge of current and emerging digital forensic tools and technologies
  • Deliver comprehensive reports to stakeholders detailing the forensic findings, analysis, and recommendations
  • Participate in the creation and continuous improvement of incident response playbooks

About you:

  • Minimum of 3 years’ experience in digital forensics, incident response, or a similar role. With familiarity with digital forensics tools (e.g., EnCase, FTK, Volatility, etc.)
  • Strong understanding of cyber security principles and threats, as well as the incident response lifecycle
  • Proficiency in scripting languages (Python, Bash, or similar)
  • Ability to document and explain technical details in a clear, understandable manner
  • Certified in relevant professional qualifications (e.g., GIAC Certified Forensic Analyst (GCFA), Certified Computer Examiner (CCE), etc.) would be beneficial
  • Effective problem-solving and critical thinking skills
  • Comprehensive communication, attention to detail and interpersonal skills
  • Upper-intermediate English skills

We offer:

Monthly salary range from 4240 EUR to 6360 EUR gross (based on your competencies relevant for the job).

Additionally, each Danske Bank employee receives employee benefits package which includes:
    • Growth opportunities: professional & supportive team, e-learnings, numerous development programs; (incl. professional certificates); 100+ professions for internal mobility opportunities.
    • Health & Well-being: a diverse, inclusive, work & life balance work environment; additional health insurance; mental well-being practices; partial psychologist counselling compensation; silence and sleep zones at the office; game rooms.
    • Hybrid working conditions: home office budget (after the probation period); modern Danske Campus workplace developed with anthropologist for the best employee experience.
    • Additional days of leave: for rest, health, volunteering, exams in higher education institutions, and other important activities. Moreover, for seniority with Danske Bank.
    • Monetary compensation package: accidents & critical diseases insurance; financial support in case of unfortunate events, travel insurance; IIIrd Pillar Pension Fund contribution.

Additional days of vacation

Canteen services and free fruits

24/7 gym services and group trainings

Free parking & charging ports - cars, bicycles, e-scooters

See all the benefits HERE.

I’ve been in DFIR for over 25 years, and I would have loved this sort of position earlier in my career. It’s a great role as we search for new ways of working including fast cloud and remote forensics. You will have significant autotomy to develop tools and processes while still being supported by me and our great team in both LT and DK.

If you're interested in this role and joining my team, feel free to contact me via LinkedIn, and I will answer your questions!

Steve Armstrong-Godwin, Lead of Security Incident Response and Threat Management at Danske Bank

Apply via:

Send your CV

If you are interested, please send your CV in English no later than 10.06.2024. Confidentiality guaranteed.

Your title in job contract will be IT Security Engineer, Senior.