Cybersecurity DFIR Specialist

5 days ago

Singapore Flare Consulting Full time $80,000 - $120,000 per year
Job Description: Cybersecurity DFIR Specialist

Employment Type: Full-time / Permanent

Experience Level: Mid–Senior Level

We are seeking a skilled and experienced Cybersecurity DFIR Specialist to join our security team. This role is critical in detecting, investigating, and responding to cybersecurity incidents while performing digital forensics to uncover root causes, assess impact, and strengthen defenses. The ideal candidate will have hands-on experience with incident handling, malware analysis, log analysis, and forensics investigations in both on-premises and cloud environments.

Key Responsibilities

Incident Response & Threat Handling

  • Act as the primary responder to security incidents, leading triage, containment, eradication, and recovery efforts.
  • Conduct root cause analysis and produce detailed incident reports, including attack timelines and impact assessments.
  • Collaborate with SOC, IT, and engineering teams to contain threats and restore normal operations quickly.

Digital Forensics

  • Collect, preserve, and analyze digital evidence from compromised systems, endpoints, and networks.
  • Perform forensic investigations using industry-standard tools (EnCase, FTK, Autopsy, etc.).
  • Develop and maintain forensic playbooks and standard operating procedures.

Threat Hunting & Analysis

  • Conduct proactive threat hunting using SIEM data, EDR solutions, and threat intelligence feeds.
  • Perform malware analysis, memory forensics, and network traffic analysis to identify Indicators of Compromise (IOCs).
  • Develop detection rules and signatures to improve future detection and response capabilities.

Collaboration & Reporting

  • Work closely with cross-functional teams (SOC, GRC, engineering, legal, compliance) to ensure coordinated response efforts.
  • Provide actionable recommendations to strengthen security posture and reduce risk exposure.
  • Prepare executive-level and technical reports summarizing investigations, impact, and lessons learned.

Continuous Improvement

  • Stay updated with the latest threat trends, TTPs (Tactics, Techniques, and Procedures), and vulnerabilities.
  • Participate in tabletop exercises, red/blue team drills, and post-incident reviews to improve readiness.
  • Contribute to the development of automation scripts and response tooling to speed up investigations.
Required Qualifications
  • 5+ years of experience in cybersecurity, with at least 3+ years in DFIR or incident response roles .
  • Strong knowledge of Windows, Linux, and macOS internals and forensic artifacts.
  • Proficiency with SIEM, EDR, and forensic tools (Splunk, ELK, Velociraptor, EnCase, FTK, Volatility, etc.).
  • Hands-on experience with malware analysis, reverse engineering, and memory forensics is a plus.
  • Familiarity with MITRE ATT&CK framework and threat intelligence methodologies.
  • Understanding of cloud environments (AWS, Azure, GCP) and cloud incident response.
  • Excellent problem-solving, analytical, and communication skills.
  • Relevant certifications preferred: GCFA, GCFE, GNFA, GCIH, CHFI, OSDF, CEH, CISSP .
Nice to Have
  • Experience with SOAR platforms and automation scripting (Python, PowerShell).
  • Exposure to red teaming or penetration testing methodologies.
  • Knowledge of regulatory requirements (ISO 27001, SOC 2, GDPR, PDPA).

  • Engineer, Cybersecurity DFIR

    2 weeks ago

    Singapore ICE Full time

    Overview Engineer, Cybersecurity DFIR role at ICE. The ICE Cybersecurity Digital Forensics and Incident Response (DFIR) team is responsible for defending critical financial infrastructure from global cyber threats. This role is suited for both entry-level analysts and experienced engineers, with responsibilities and growth opportunities tailored to each...

  • Cybersecurity Specialist

    1 week ago

    Singapore Red Alpha Cybersecurity Full time

    Join to apply for the Cybersecurity Specialist role at Red Alpha Cybersecurity Join us as a Cybersecurity Specialist through our Alpha Specialist Training Programme (ASTP) , a structured and fully sponsored pathway designed to launch your career in cybersecurity. Whether you're a fresh graduate or making a career switch, Red Alpha equips you with practical...

  • Cybersecurity Specialist

    6 hours ago

    Singapore Red Alpha Cybersecurity Full time

    Cybersecurity Specialist Join us as a Cybersecurity Specialist through our Alpha Specialist Training Programme (ASTP), a structured and fully sponsored pathway designed to launch your career in cybersecurity. Whether you're a fresh graduate or making a career switch, Red Alpha equips you with practical skills, industry-recognised certifications, and a...

  • Analyst, Cybersecurity DFIR

    4 days ago

    Singapore ICE DATA SERVICES SINGAPORE PTE. LTD. Full time

    Job Purpose The ICE Cybersecurity Digital Forensics and Incident Response (DFIR) team is responsible for defending critical financial infrastructure from Global Cyber threats. This role is suited for both entry-level analysts and experienced engineers, with responsibilities and growth opportunities tailored to each level. You will work alongside experienced...

  • Associate Cybersecurity Specialist

    6 days ago

    Singapore RED ALPHA CYBERSECURITY PTE. LTD. Full time

    Do you have a passion for keeping cyberspace safe and secure? We are seeking talented individuals to join our team! - Cybersecurity analysts - Cybersecurity solutions specialists - Cybersecurity system engineers - Cyber threat intelligence specialists - Offensive security specialists/Penetration Testers - Cybersecurity architects We develop today's...

  • Snr Cybersecurity Consultant

    2 weeks ago

    Singapore Cyber Security Agency of Singapore (CSA) Full time

    Overview Join to apply for the Snr Cybersecurity Consultant / Cybersecurity Consultant (DFIR) - NCIRC role at Cyber Security Agency of Singapore (CSA). What The Role Is The key responsibility of an engineer in the Digital Forensics and Incident Response team is to facilitate an orderly and efficient response to cyber incidents. Primary Responsibilities You...

  • Associate Cybersecurity Specialist

    2 weeks ago

    Singapore Red Alpha Cybersecurity Pte. Ltd. Full time

    About the job Associate Cybersecurity Specialist Join us as a Cybersecurity Specialist through our Alpha Specialist Training Programme (ASTP) , a structured and fully sponsored pathway designed to launch your career in cybersecurity. Red Alpha equips you with practical skills, industry-recognised certifications, and a guaranteed deployment into meaningful...

  • Associate Cybersecurity Specialist

    4 days ago

    Singapore Red Alpha Cybersecurity Pte. Ltd. Full time

    About the job Associate Cybersecurity Specialist Join us as a Cybersecurity Specialist through our Alpha Specialist Training Programme (ASTP) , a structured and fully sponsored pathway designed to launch your career in cybersecurity. Red Alpha equips you with practical skills, industry-recognised certifications, and a guaranteed deployment into meaningful...

  • Associate Cybersecurity Specialist

    1 week ago

    Singapore RED ALPHA CYBERSECURITY PTE. LTD. Remote Work Freelance Full time

    Join us as a Cybersecurity Specialist through our Alpha Specialist Training Programme (ASTP) , a structured and fully sponsored pathway designed to launch your career in cybersecurity. Whether you're a fresh graduate or making a career switch, Red Alpha equips you with practical skills, industry-recognised certifications, and a guaranteed deployment into...

  • Associate Cybersecurity Specialist

    6 days ago

    Singapore RED ALPHA CYBERSECURITY PTE. LTD. Full time

    No prior IT background or knowledge is required. We develop today's high-aptitude and purpose-driven talents interested in a career in cybersecurity into tomorrow's world-class cybersecurity specialists.