Lead, Digital Forensics - Dubai
1 day ago
Job description
About the Company
Our client is an Elite Managed Detection & Response (MDR) Global Firm that serves as the "Digital Secret Service" for the Middle East's most critical financial institutions, national airlines, and government departments. With a state-of-the-art Global Security Operations Center (GSOC) located in Dubai, they are the first phone call made by CEOs and CISOs during a national-scale cyber crisis. They operate with a "special forces" mentality: lean, highly specialized, and equipped with the world's most advanced forensic technology. The culture is built on rapid response, absolute discretion, and technical mastery. As a leader in this organization, you will be at the front lines of the most high-profile cyber investigations in the EMEA region, dealing with state-sponsored actors, advanced ransomware syndicates, and complex internal threats.
About the Role
As the Lead of DFIR, you are the master investigator. When the alarms go off, you take command. Your mission is to rapidly identify the scope of a breach, contain the adversary, and conduct a "surgical" forensic analysis to determine the who, how, and when. You are a unique blend of a technical deep-diver and a strategic crisis manager.
Responsibilities
- Crisis Command:
Lead the end-to-end response for high-severity security incidents (Ransomware, APTs, Data Exfiltration) across diverse client environments. - Advanced Digital Forensics:
Perform deep-dive analysis of host-based artifacts (Windows, Linux, macOS), memory forensics, and complex network traffic logs to reconstruct attacker timelines. - Malware Reverse Engineering:
Lead the initial triage and behavioral analysis of suspicious binaries to identify "Kill Chain" indicators and develop custom containment scripts. - Litigation Support:
Author high-stakes forensic reports that are "Court-Ready," adhering to international standards for chain of custody and evidentiary integrity. - Proactive Threat Hunting:
Design and lead "MDR Hunting Missions" for clients, searching for dormant threats that have bypassed traditional perimeter defenses.
Qualifications
- Experience: 10+ years in Cybersecurity, with at least 6 years focused exclusively on Incident Response or Digital Forensics.
- The Investigator: Proven experience handling major data breaches for large-scale enterprises or within a top-tier cybersecurity consultancy.
- Certifications: You must hold at least one "Heavyweight" forensic cert: GIAC Certified Incident Handler (GCIH), GCFA, or GCFE. GNFA or GREM is a significant advantage.
- Technical Mastery: Expert-level use of EnCase, FTK, Magnet AXIOM, X-Ways, and EDR/XDR platforms (CrowdStrike, SentinelOne, or Microsoft Defender for Endpoint).
- Calm Under Fire: Exceptional ability to lead teams and communicate clearly with nervous stakeholders during high-pressure breach scenarios.
Required Skills
- 10+ years in Cybersecurity
- 6 years focused on Incident Response or Digital Forensics
- Proven experience with major data breaches
- Heavyweight forensic certifications
- Expert-level use of forensic tools
- Exceptional communication skills under pressure
Preferred Skills
- GNFA or GREM certification
- Experience with CrowdStrike, SentinelOne, or Microsoft Defender for Endpoint
Pay range and compensation package
Salary Range: AED 48,000 – AED 65,000 per month (Tax-Free)
Total Comp: Includes Tier-1 Housing Allowance, Family Global Health Cover, and a High-Yield Performance Bonus.
Equal Opportunity Statement
We are committed to diversity and inclusivity in our hiring practices.
Similar jobs
We are seeking a highly skilled Senior DFIR Specialist to lead our incident response efforts and safeguard our digital ecosystem. · If you have a passion for uncovering the how and why behind an attack and the technical grit to hunt across Windows Linux and Cloud environments we ...
1 week ago
About the Company · Our client is an Elite Managed Detection & Response (MDR) Global Firm that serves as the "Digital Secret Service" for the Middle East's most critical financial institutions, national airlines, and government departments. With a state-of-the-art Global Security ...
2 days ago
Expert DFIR Analyst sought for Digital Forensics Incident Response role at Dell. · Acquire and analyze system-level artifacts from Linux, Windows, Containers environments. · Hunt threats using Microsoft Sentinel, XDR, etc. · Respond to telecom-related incidents in telecommunicati ...
1 month ago
We are seeking a highly skilled Senior DFIR Specialist to lead our incident response efforts and safeguard our digital ecosystem. If you have a passion for uncovering the how and why behind an attack and the technical grit to hunt across Windows, Linux, · & Cloud environments,, w ...
1 week ago
Conduct OSINT-based identity and attribution analysis · Analyze digital artifacts (messages, emails, images, logs) · Preserve electronic evidence with proper chain of custody · Prepare detailed forensic reports for police complaints and litigation · ...
3 weeks ago
We are looking for a Compromise Management Analyst to perform advanced incident response and forensic investigations across telecom and enterprise infrastructure. · Perform incident response and forensic investigations across telecom infrastructure · Analyze advanced threats targ ...
1 month ago
The Incident Response and Digital Forensics Specialist supports government organizations, handling high-priority cybersecurity incidents such as data breaches, ransomware, · and insider threats. · Incident detection and triage: Provide expertise to detect and triage incidents rep ...
1 month ago
We are seeking a highly experienced SOC L3 Analyst with strong expertise in Digital Forensics and Incident Response (DFIR) · Lead and manage high-severity security incidents and advanced cyber-attack investigations · Perform digital forensics analysis on endpoints, servers, netwo ...
1 month ago
We are looking for a Compromise Management Analyst to support incident response and forensic investigations within a large telecom security environment. · Perform incident response and forensic investigations across telecom environments (2G / 4G / 5G infrastructure) · Identify in ...
1 week ago
We are looking for a Compromise Management Analyst to support incident response and forensic investigations within a large telecom security environment. · The role focuses on identifying, analyzing, and responding to security compromises affecting telecom infrastructure and enter ...
5 days ago
The Executive – Forensic Investigation will be responsible for conducting forensic reviews, · fraud investigations and data analysis to identify financial irregularities and support internal and external investigations.Bachelor's/ master's degree in accounting Finance Law or a re ...
1 month ago
The Executive – Forensic Investigation will be responsible for conducting forensic reviews, fraud investigations, and data analysis to identify financial irregularities and support internal and external investigations. Support and conduct forensic investigations involving fraud, ...
1 month ago
We're seeking a dynamic and forward-thinking Associate Director / Senior Managing Consultant to strengthen our eDiscovery & Forensics practice in the Dubai office. · ...
1 month ago
We're seeking a dynamic and forward-thinking Senior Managing Consultant to strengthen our eDiscovery & Forensics practice in the Dubai office. · ...
1 month ago
+Job summary · Senior SOC L3 Analyst (DFIR Specialist) · This role is the highest technical escalation point in the SOC focus on complex investigations that L1/L2 analysts cannot resolve.+ResponsibilitiesAdvanced IR: Leading the containment and eradication of high-severity incide ...
1 month ago
We are looking for a highly experienced DFIR & Threat Hunting professional to join our Security Operations Center (SOC). This role is not for monitoring-only SOC analysts — we are hiring engineers who can lead investigations, hunt advanced threats, · and respond to complex securi ...
1 month ago
The Data Protection & Information Security Manager owns and governs enterprise-wide information security and data protection across all regions. · ...
3 weeks ago
Independently conduct threat hunting to identify and analyze security threats · Analyze and correlate security-relevant events using SIEM systems · ...
1 month ago
We're Hiring: Graphic DesignerCambridge Education is a leading executive management education and professional training institution headquartered in the UAE, with a legacy of over 39 years. · Design creatives for social media, ads, websites, landing pages, brochures, and presenta ...
1 week ago
Join our dynamic Audit, Advisory, and Consulting teams and kick‑start a rewarding career where learning, growth, and meaningful client impact are at the heart of what you do. · ...
3 weeks ago