Senior Consultant, DFIR

Moxfive LLC

Job Overview

Location

USA

Job Type

Full-time

Full Job Description

📋 Description

• As a Senior Consultant in Digital Forensics and Incident Response (DFIR) at MOXFIVE, you will play a critical role in protecting clients from sophisticated cyber threats by leading and supporting investigations across complex, modern enterprise environments—including traditional endpoints, cloud platforms (AWS, GCP, Azure), and SaaS applications. Your expertise will directly contribute to eradicating adversaries and advancing MOXFIVE’s mission to redefine DFIR for the cloud era.
• Day to day, you will lead and conduct end-to-end incident response engagements, including triage, forensic analysis, threat hunting, containment, eradication, and recovery efforts across Windows, macOS, and Linux systems. You will analyze logs, memory, disk, and network artifacts to reconstruct attacker behavior, identify indicators of compromise (IOCs), and produce detailed technical reports and executive briefings for clients.
• You will collaborate closely with client IT, security, and leadership teams during high-pressure incidents, providing clear, empathetic communication and actionable guidance to help organizations navigate crises with confidence. This includes participating in client calls, presenting findings, and advising on remediation and long-term resilience strategies.
• You will contribute to the evolution of MOXFIVE’s DFIR practice by developing and refining investigative methodologies, creating or enhancing forensic scripts and automation tools, and sharing knowledge through internal training, playbook development, and threat intelligence integration.
• You will stay current with emerging threats and cloud-native attack techniques, particularly around identity-based threats (e.g., account takeover in Okta, Azure AD, Google Workspace), containerized environments, and serverless workloads, applying this knowledge to improve detection and response capabilities.
• As a senior member of a growing startup team, you will have significant influence over the company’s technology stack, service offerings, and internal processes—helping shape the future of MOXFIVE’s approach to modern incident response through your technical insights and innovative thinking.
• You will deepen your expertise in cloud forensics, threat intelligence integration, and enterprise-scale investigations while building leadership and client-facing skills in a fast-paced, mission-driven environment where your work has tangible impact on global organizations’ security posture.

🎯 Requirements

• Proven experience responding to threat activity as an IR consultant, SOC analyst, or in a similar hands-on cybersecurity role
• Strong foundational knowledge of Windows, macOS, and Linux operating systems, including forensic artifacts, registry analysis, file system timelines, and memory forensics
• Demonstrated ability to conduct network traffic analysis and log analysis using tools such as Wireshark, Zeek, ELK, or similar platforms
• Familiarity with or strong motivation to develop expertise in cloud-native forensics across AWS, GCP, and Azure environments, including IaaS, PaaS, and SaaS platforms
• Excellent communication skills with the ability to translate technical findings into clear, actionable reports for both technical and executive audiences
• Commitment to maintaining the highest standards of investigative quality, accuracy, and thoroughness in all engagements

🏖️ Benefits

• Fully remote work arrangement with flexibility to operate from any location within the United States
• Opportunity to work on high-impact, diverse incident response cases ranging from ransomware to nation-state intrusions across multiple industries
• Access to cutting-edge tools, threat intelligence feeds, and internal R&D resources to support innovative investigative approaches
• Collaborative, startup-culture environment where your ideas directly influence company direction, methodology, and service offerings
• Professional development support including training, certifications, and conference attendance to grow expertise in emerging DFIR domains
• Competitive compensation package aligned with senior-level consulting expertise in cybersecurity and incident response

Skills & Technologies

AWS

Azure

GCP

Linux

Senior

Remote

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

Moxfive LLC

Visit Website

About Moxfive LLC

Moxfive LLC offers technical advisory and managed services that help enterprise technology teams reduce risk and accelerate delivery. It specializes in cloud and infrastructure optimization, cybersecurity, and DevOps, providing architects, engineers, and program managers on demand. Clients gain access to repeatable frameworks, automation playbooks, and 24×7 operational support without adding permanent headcount.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.