[Remote] Staff DFIR Analyst
Note: The job is a remote job and is open to candidates in USA. SentinelOne is redefining cybersecurity by leveraging AI-powered, data-driven innovation to combat future threats. The role involves conducting digital forensic investigations and threat hunting operations for global clients, ensuring excellence in engagements, and managing breach response investigations.
Responsibilities
• Accountable to ensure excellence in every engagement, to include scoping, forensic analysis, reporting, hunting, remediation consulting, and client communication
• Contribute as a lead investigator for engagements
• Manage all aspects of a breach response and containment investigation
• Technical investigative skills must include host-based forensic analysis, EDR-driven incident response, malware analysis, memory analytics, and network log investigations
• Provide detailed and impactful formal investigative reports, to include technical findings and security improvement recommendations
• Work closely with the threat intelligence team to pursue attribution, identify attack trends, innovative malicious TTPs, and contribute to community-facing publications and blogs
Skills
• 4+ years of hands-on consulting experience in threat hunting, digital forensics, and incident response
• Technical investigative skills must include host-based forensic analysis, EDR-driven incident response, malware analysis, memory analytics, and network log investigations
• Provide detailed and impactful formal investigative reports, to include technical findings and security improvement recommendations
• Work closely with the threat intelligence team to pursue attribution, identify attack trends, innovative malicious TTPs, and contribute to community-facing publications and blogs
• Experience or knowledge of conducting endpoint based threat hunting (compromise assessments)
• Experience working with cyber threat intelligence platforms and the threat intelligence process from raw attack data to finished intel and publications
• Expert level experience with forensic investigative software (X-Ways or Axiom Cyber preferred)
• Experience with EDR/XDR platforms (SentinelOne preferred)
• Experienced conducting dynamic malware analysis and understanding of the reverse engineering process (preferred)
• Experience with memory analytics (Volatility Preferred)
Benefits
• Medical, Vision, Dental, 401(k), Commuter, Health and Dependent FSA
• Unlimited PTO
• Industry leading gender-neutral parental leave
• Paid Company Holidays
• Paid Sick Time
• Employee stock purchase program
• Disability and life insurance
• Employee assistance program
• Gym membership reimbursement
• Cell phone reimbursement
• Numerous company-sponsored events including regular happy hours and team building events
Company Overview
• SentinelOne is an autonomous cybersecurity solution company. It was founded in 2013, and is headquartered in Mountain View, California, USA, with a workforce of 1001-5000 employees. Its website is http://www.sentinelone.com.
Company H1B Sponsorship
• SentinelOne has a track record of offering H1B sponsorships, with 13 in 2025, 14 in 2024, 2 in 2023, 18 in 2022, 5 in 2021. Please note that this does not guarantee sponsorship for this specific role.
Apply tot his job
Apply To this Job