Information Security Incident Response and

**The Role**

Incident Response and Forensic Analyst to lead the development and operation of a forensics and malware analysis functional capability in support of ongoing investigative and incident response activities.

**What the Infosec Team wants you to know**

Infosec work at Ampere is interesting, challenging, and will expand your professional breadth. We are currently a small team that is passionate about information security and protecting the company’s intellectual property.

**What you’ll do**
- Reverse engineer malware in support of incident response and threat intelligence requirements
- Research and develop methods of tracking and detecting malicious activity within an enterprise network
- Use various tools and techniques to analyze malicious document files, executables and web-based malware
- Conducts analysis of cybercriminal entities' use of technology to target, collect, and exploit customer information and information systems, personnel, and operations and participate in security education programs and briefings
- Performs open-source research to enable and facilitate the identification of cybercriminal activity
- Utilizes understanding of attack signatures, tactics, techniques and procedures associated with advanced threats
- Delivers reports, briefings, and assessments to customers and leadership, facilitating understanding of cyber threat entities and environments

**What you’ll bring**
- Strong understanding of malware analysis and incident response framework
- Able to conduct code and behavioral analysis of malware, including building a lab environment and is capable of using but not limited to debuggers, disassemblers, sniffers, and other analysis toolsets
- Proficiency with network traffic analysis
- Experience with using memory forensics techniques to analyze malware threats
- Experience identifying, analyzing, and interpreting trends or patterns in data sets
- Knowledge of packers and obfuscation techniques as well as experience defeating anti-analysis techniques
- Familiarity with the use of forensics images and memory dumps in support of incident response
- Ability to recognize and handle sensitive data appropriately
- Strong leadership skills with the ability to prioritize and execute in a methodical and disciplined manner
- Demonstrated ability to manage customer relationships
- Able to communicate effectively orally and in writing to include investigative reports
- Must be on call after work hours for any incident response emergency
- Involvement with process development and deployment
- Knowledge in information technologies to include computer hardware and software, operating systems, and networking protocols
- Experience performing network traffic analysis
- Experience using Splunk and or ELK Stack for analysis
- Experience with using scripting languages to include but not limited to PowerShell, BASH, and Python

***Education**
- Bachelor’s degree or equivalent work experience with at least 3-5 years of experience in vulnerability management and Ansible playbook development.

**Our Company**

**Our Story**

Like the scientist behind its name, Ampere employees are innovators. We understand the needs of cloud computing and different software requirements. We are inventing what comes next and looking at everything from the structure of memory and how efficient the system is, to considerations on speed, cost of electricity and ability to cool. Power, size, weight and cost are driving the technology requirements and the innovation to come.