Denver, CO

Kivu Consulting, a leading cyber security, incident response, computer forensics, and investigations firm seeking an Analyst, Digital Forensics & Incident Response. The ideal candidate will be highly organized and have 3-5 years of penetration testing, vulnerability and risk assessment, and cyber security consulting experience, and be driven to grow their existing skill set. Experience handling client/sensitive data is a significant plus as well as performing in a consultative, customer facing role.

Kivu consists of security analysts who specialize in cyber security, incident response, digital forensics and risk management services. Kivu provides cyber security solutions through a combination of technical, analytical, legal services and experience.

We are looking for a passionate Associate Director of Information Protection consulting services with strong experience in information security, technology, compliance, risk and governance who can take a leadership role in our growing cyber security consulting practice with a focus on security assessments, penetration testing, and information security consulting.

The Associate Director of Information Protection consulting will be responsible for leading a team to review and test our clients’ technical, administrative and physical controls within their information technology environment and provide guidance on mitigating the risks based upon the results.

The successful candidate must be an individual who understands business operations, information technology and security. This individual must have demonstrated leadership specific to technical information security issues with hands on experience with information security testing and consulting. The Director must have the ability to manage and develop staff. High level communication skills are essential to successfully translate technology and security requirements into business terms. Strong client service skills are necessary for interacting with various levels of internal IT staff as well as corporate leadership.

Duties include:

• Be involved with the sales process by working with the business development staff and clients to explain and demonstrate services and products as a subject matter expert
• Assist sales staff with the creation and delivery of proposals Maintain working knowledge of advanced cyber threat actor tactics and techniques
• Research, identify and understand new threats
• Conduct penetration tests, security audits and risk assessments with commercial, open source and self-developed tools and techniques
• Report and present findings to team and clients
• Manage, mentor and train fellow team members
• Internally educate business unit leaders, staff and executive leadership on the information protection practice
• Excel as a self-motivated individual who can work on their own as well as integrated with a team in a variety of situations
• Consistently work to improve our brand through thought leadership

Required experience:

• 3-5 years of consulting experience leading and performing penetration testing engagements and IT security assessments

Preferred Skills and Qualifications:

• Must possess strong verbal and written skills
• Consulting experience a must
• Experience in a number of IT disciplines may provide a solid framework for this position, but must have hands-on results from performing penetration testing, IT risk assessments, information security consulting, or IT audits are most beneficial
• GPEN, OSCP and equivalent security testing and certifications
• Familiarity and knowledge of security frameworks (NIST CSF, CIS, ISO)
• Proven experience with security tools such as Nexpose, Metasploit, Nessus, Kali Linux, etc., as well as other various commercial and self-developed tools
• Experience with scripting languages such as python, ruby, etc., as well as familiarity with programming languages such as: C/C++/ObjC/C#, Java, PHP, or .NET
• Strong knowledge of the Windows client/server architecture and familiarity with Linux/Unix
• Strong networking knowledge with a focus on security
• Team leadership and development experience required
• Project management experience highly desired
• Familiarity with incident handling techniques and processes desired
• Industry visibility through conference presentations, blogging, academic papers and social media is desired
• Business development skills a plus

The position is in Denver, Colorado and is full-time. Compensation will include an attractive base salary, incentive compensation, and full benefits including health and 401(k). Salary is commensurate with experience. Please email a resume and detailed cover letter (outlining how you fit the above requirements) to Doug Brush, Director at dbrush@kivuconsulting.com

Denver, CO

Kivu Consulting, a leading cyber security, incident response, computer forensics, and investigations firm seeking an Analyst, Digital Forensics & Incident Response. The ideal candidate will be highly organized and have 1-2 years of forensics and incident response experience and be driven to grow their existing skill set. Experience handling client/sensitive data is a significant plus as well as performing in a consultative, customer facing role. Kivu consists of security analysts who specialize in cyber security, incident response, digital forensics and risk management services. Kivu provides cyber security solutions through a combination of technical, analytical, legal services and experience. More details on the firm can be found at www.kivuconsulting.com. We are looking for a passionate Analyst to take part in our growing Cyber Investigations consulting practice. The candidate will be responsible for assisting our team respond to digital forensic, incident response, and litigation needs in our clients’ information technology environments. The successful candidate must be an individual who understands digital forensic best practices and data acquisition and basic analysis to reporting. This individual must be a team player, and the ability to manage task specific roles as part of client deliverables. Computer forensic certification from an industry recognized organization and 1 to 2 years’ experience required. Well-developed written and verbal communication skills are essential to successfully translate technical concepts into reports for clients, team members and corporate leadership. Client service skills are necessary for interacting with various client personalities and changes to project scopes.

Duties include:

• Provide immediate onsite and remote support for digital forensics, incident response, and litigation support
• Conduct defensible data acquisitions and analysis
• Demonstrate skills at the identification, collection, preservation, processing of data as part of the investigation process
• Process collected data in various digital forensic, litigation support, and data analytics tools
• Work with and support case team managers
• Document and present findings to team and clients
• Build working knowledge of advanced digital forensic, incident response, and data analytics technologies
• Research, identify and understand new artifacts in enterprise computing environments
• Excel as a self-motivated individual who can work on their own as well as integrated with a team in a variety of situations

Required experience:

1 – 2 years with specific technology experience in digital forensics and incident response required

Preferred Skills and Qualifications:

• Strong verbal and written skills
• Experience with tools such as EnCase, FTK, Internet Evidence Finder, Nuix, Cellebrite, and other industry tools
• Computer forensic certification from an industry recognized organization required
• Additional core competencies a plus such as data analytics and/or eDiscovery
• Familiarity SQL and database technologies desired
• Bachelor’s degree or other industry training desired The position is in Denver, Colorado and is full-time. Compensation will include an attractive base salary, incentive compensation, and full benefits including health and 401(k). Salary is commensurate with experience. Please email a resume and detailed cover letter (outlining how you fit the above requirements) to Doug Brush, Director at dbrush@kivuconsulting.com

Kivu Consulting, a leading cyber security, incident response, computer forensics, and investigations firm seeking an IT Manager and System Administrator to lead administration, support, and maintenance initiatives. The ideal candidate will be highly organized and have 3-5 years of information technology experience and be driven to grow their existing skill set. Experience handling client/sensitive data is a significant plus as well as performing in a consultative, customer facing role. The position will support remote employees in North America and Europe and will require being on call when needed, sometimes after normal business hours. Kivu consists of security analysts who specialize in cyber security, incident response, digital forensics and risk management services. Kivu provides cyber security solutions through a combination of technical, analytical, legal services and experience. More details on the firm can be found at www.kivuconsulting.com. We’re looking for an individual to improve, implement, administer, maintain, and support our internally and externally hosted IT infrastructure. The right candidate will be forward looking, and will have the opportunity to plan and develop strategic internal IT solutions to meet the needs of a growing consultancy while acquiring valuable cyber security, computer forensic, and investigation skills to support our clients.

Duties include:

• Develop a strategic plan which includes short term (less than 3 months), intermediate term (3 to 18 months) and long term (more than 18 months) recommendations to improve Kivu’s productivity and communications utilizing best of breed IT solutions.
• Administer, maintain, and support IT infrastructure consisting of NextGen firewalls (NGFW’s), Windows Active Directory, Microsoft Azure, Office 365, VoIP phone systems, and various cloud based hosted services.
• Provide on-site and remote level 1 and 2 IT support for Windows based servers and endpoints along with a limited Mac and Linux environment during regular business hours and on- call as needed after hours, weekends, and holidays. Remote employees are primarily based in the United States.
• Build and manage desktop and server images with the ability to progressively harden configuration to meet with security standards.
• Handle Disaster Recovery and data back-up operations through cloud based and traditional tape back-up solutions.
• As needed, support operations of the forensic lab and penetration testing environments which include staging project working data sets, archiving completed engagement media, configuring and wiping forensic workstations, and provisioning of offensive security workstations for assessments or testing.
• As needed, provide consulting and customer facing support to Kivu’s clients as part of consulting and incident response engagements.
• The ability to travel, sometimes on short notice, to support internal resources or client needs in North America.

Required experience:
3-5 years IT Management including strategy, infrastructure design and implementation, and project management.

Preferred Skills and Qualifications:

• 3-5 years’ experience in IT support role, including performance of routine hardware and software maintenance.
• Extensive professional experience administering Windows (server/workstation), Linux, Mac, and NGFW operating systems.
• Experience implementing and supporting Microsoft products and Office 365.
• Ability to provide on-site and remote IT troubleshooting.
• Excellent written and verbal communication skills.
• Well-organized and able to work on multiple, simultaneous tasks.
• Excellent and proven customer support, interpersonal and communication skills.
• Process oriented with an attention to detail.
• Drive and capability of working independently.
• Understanding of databases principals.
• Formal technical training and certificate such as MCSE, Cisco, CompTIA, etc.

The position is in Denver, Colorado and is full-time. Compensation will include an attractive base salary, incentive compensation, and full benefits including health and 401(k). Salary is commensurate with experience. Please email a resume and detailed cover letter (outlining how you fit the above requirements) to Doug Brush, Director at dbrush@kivuconsulting.com

Kivu Consulting, a leading incident response and computer forensics firm headquartered in San Francisco, seeks an experienced cyber investigator to join its Incident Response practice. This position will primarily cover the West Coast. More details of the firm can be found at www.kivuconsulting.com.

Our team of experts covers a wide range of assignments, including:

• Analyzing data breaches, determining the cause and extent of data loss, and advising on immediate and long-term remediation;
• Providing pre-breach services including risk assessments, IR plans and pen-testing in a wide range of industries including healthcare and fin-tech;
• Handling complex computer forensics investigations and providing expert witness testimony

We’re looking for someone with:

• Strong experience responding to data breaches
• Ability to provide exceptional client service to all Kivu’s clients including law firms, insurance carriers, business organizations, and public entities
• Experience working directly with C-suite professionals, senior attorneys, and government regulators
• Someone highly responsive to customer needs and deadlines, and with no compromise in work quality The right candidate will be obsessed with accuracy but still able to get relevant results to clients ahead of schedule; be able to triage multiple cases; function in a highly confidential environment; and be able to explain highly technical findings to non-technical executives.

Basic Qualifications

• At least 7 years’ professional experience in network/cyber investigations, incident response, forensics or related InfoSec experience
• Experience in a professional services firm handling law firm clients
• Ability to manage multiple projects and train/ mentor staff
• Relevant industry certifications are a plus: GIAC Certified Incident Handler (GCIH); GIAC Certified Intrusion Analyst (GCIA); GIAC Reverse Engineering Malware (GREM); GIAC Certified Forensic Analyst (GCFA); GIAC Certified Forensic Examiner (GCFE); Encase Certified Examiner (EnCE)
• Advanced working knowledge of forensic tools (e.g. Encase, FTK, BlackLight)
• Experience with Unix, Linux, Mac, and Windows systems, and an admin level understanding of networking, firewalls, and the various protocols involved in data sharing and communications (e.g. how protocols work, their common ports, and common usage)
• Working knowledge of current data collection, storage, and chain of custody best practices
• Excellent reporting skills (both written and verbal)
• Experience presenting findings and recommendations to C-level executives, law enforcement, and outside counsel
• Ability to support business development efforts

Opportunity

This is an entrepreneurial role within an established company that provides the opportunity to implement your ideas and grow your career Do you seek a higher impact role? Do you enjoy building? Tired of big-firm bureaucracy, red tape and politics? Want to see your ideas implemented? Then you should consider this role. The position is full-time. Compensation will include an attractive base salary, incentive compensation and full benefits. Please email a resume and detailed cover letter (outlining how you fit the above requirements) to info@kivuconsulting.com.

Kivu Consulting, a leading computer forensics and investigations firm headquartered in San Francisco, is seeking an experienced Cyber Security professional in the Washington D.C. office. The ideal candidate will have hands-on experience performing data breach response, with extensive knowledge in security risk assessments, incident response and computer forensics matters. A high level of customer service and communication skills is also required. Kivu consists of professional investigators who specialize in digital forensics, incident response, and preemptive data breach response. Kivu provides security solutions worldwide through a combination of technical, analytical, and legal tactics. More details on the firm can be found at www.kivuconsulting.com.

Our team of experts encounters a wide range of matters including:

• Preemptive data breach response;
• Analytic and reporting for litigation, data breaches and regulatory response;
• Workplace and employment issues, including theft of trade secrets;
• Serving as expert witnesses, technology neutrals, special masters, and 30(b)(6) experts (state and federal cases);
• Investigating network breaches/ unauthorized access of data, through computer forensics and incident response.

We’re looking for a motivated candidate who has 1- 3 years’ experience in the following areas:

• The ability to deliver exceptional client service, including communication with the client throughout the project life-cycle to understand client needs, to be highly responsive, and to ensure all deadlines are met;
• Preemptive Data Breach Response.
• Cyber Risk / Security Assessments.
• Demonstrated experience in completing all phases of a Security/ Risk Assessment including: Penetration Testing, Vulnerability Scanning, and Log Configuration.
• CSIRP Development and Gap Analysis.
• Tabletop Exercises.
• Incident Response and Computer Forensics.
• Data Breach Response and Best Practices.
• Experience with scan/assessment tools within frameworks such as Metasploit and Core Impact.
• Handling web application exploitation, server and client-side attacks, and protocol subversion.
• Experience with different scanning tools such as Nessus, Burp Suite and others.
• Extensive knowledge in computer networks, hardware, communications and connectivity.
• Enthusiasm toward providing in-depth recommendations and next steps advising.
• Performing IT System and Network Audits.
• Experience with writing technical reports. The right candidate will be market and client focused; Enthusiastic about delivering the highest quality results to our clients on time and on budget; be able to triage multiple cases; and be self-driven to deliver the highest level results for our clients.

Preferred Skills and Qualifications:

• BA or Masters in Cyber Security, Computer Science, Information Security or other related fields.
• Certifications in SANS, ENCE, OSCP/OSCE.
• Familiarity with Windows, Linux, Mac, and UNIX Systems.
• Proficient in one or more of the following languages- C, C++, Visual Basic, Python, Ruby, Java Script, Perl.
• Knowledgeable on encryption and encoding methods, communication protocols, and algorithms.
• Familiarity with NIST frameworks.

The position is full-time. Compensation will include an attractive base salary, incentive compensation and full benefits. Salary is commensurate with experience.

Please email a resume and detailed cover letter (outlining how you fit the above requirements) to ejones@kivuconsulting.com

Elgan Jones, CFE, EnCe
Director, Cyber Investigations Kivu Consulting, Inc.- Washington D.C.
1875 Connecticut Ave. NW
Washington, DC. 12th Floor
20009

NOTE: applications without a detailed cover letter will not be considered.

Kivu Consulting, a leading computer forensics and investigations firm headquartered in San Francisco seeks an experienced cyber investigator to join  its incident response/ data breach practice.  More details of the firm can be found at www.kivuconsulting.com.

Our team of experts covers a wide range of assignments, including:

• Analyzing data breaches, determining the cause and extent of data loss, and advising on immediate and long-term remediation;
• Briefing and/ or testifying before regulators and law enforcement on breach response and best practices;
• Handling complex computer forensics investigations and providing expert witness testimony in theft of trade secret cases, employee malfeasance, and DOJ/ FTC actions;
• Providing focused e-discovery consulting, collection and processing;
• Providing network and IT systems audits.

We’re looking for someone with:

• In-depth incident response/ computer forensics experience
• Consulting experience and an understanding why attorneys and corporations hire boutique firms rather than the Big 4 behemoths
• The enthusiasm and sense of humor to be a team-leader and mentor

The right candidate will be obsessed with accuracy but still able to get relevant results to clients ahead of schedule; be able to triage multiple cases; function in a highly confidential environment; and be able to explain highly technical findings to non-technical executives.

The position requires being part of a team located in San Francisco, with possible on-site investigations at clients’ premises in California or elsewhere in the US.  By the nature of Incident Response, the work often takes place outside normal working hours.  The right candidate will also play an active role in business strategy and long-term development of the company.

Requirements:

1. At least 5 years’ professional experience in forensics, network/cyber investigations, incident response or related InfoSec experience
2. 2 or more of the following certifications: GIAC Certified Incident Handler (GCIH); GIAC Certified Intrusion Analyst (GCIA); GIAC Reverse Engineering Malware (GREM); GIAC Certified Forensic Analyst (GCFA); GIAC Certified Forensic Examiner (GCFE); Encase Certified Examiner (EnCE)
3. Advanced working knowledge of forensic tools (e.g. Encase, FTK, BlackLight)
4. Experience with Unix, Linux, Mac, and Windows systems, and an admin level understanding of networking, firewalls, and the various protocols involved in data sharing and communications (e.g. how protocols work, their common ports, and common usage)
5. Working knowledge of current data collection, storage, and chain of custody best practices
6. Excellent reporting skills (both written and verbal)
7. Experience presenting findings and recommendations to C-level executives, law enforcement, and outside counsel

The following experience, while not required, would be strong bonuses:

1. Testifying, preferably as an expert, in the area of digital investigations or info sec best practices
2. Experience with forensic analysis of Mac operating system devices
3. Experience with cellphone analysis
4. Working in a regulated sector (e.g. healthcare/ finance/PCI/ law enforcement)
5. Advanced working knowledge of network monitoring tools
6. Investigating/ analyzing security breaches in cloud storage and databases
7. Budgeting and executing IT risk assessments and security audits
8. Datacenter / Server room experience
9. Experience presenting to potential clients or trade groups in the area of incident response or computer forensics
10. Experience leading business development initiatives and responsibility for budgets and marketing/product proposals
11. Programming and scripting skills (e.g. Python, PowerShell, BASH, PERL, Ruby,  SED/AWK)
12. In-depth knowledge of modern Internet systems such as storage arrays, load balancers, and common platforms
13. Malware reverse engineering      skills, including the ability to read assembly code and determine its operability with common operating systems, and the ability to use debug tools and disassembly software tools. Virtual Machines – experience using and trouble-shooting virtual machines
14. Linux – experience using it, troubleshooting it, and deploying the common stacks (e.g. Apache/PHP/MySQL)

The position is full-time.  Compensation will include an attractive base salary, incentive compensation and full benefits.  Salary and incentive compensation are commensurate with experience and demonstrated ability to lead project teams.

Please email a resume and detailed cover letter (outlining how you fit the above requirements) to info@kivuconsulting.com.

NOTE: Applications without a detailed cover letter will not be considered.