Remote Business Email Compromise (BEC) Analyst

Posted 02 January 2025
Salary $100,000 –$150,000
LocationBaltimore
Job type Permanent
Discipline Cyber Security
Reference71917
Contact NameSam Pennie
Remote working Remote

Job description

NEW ROLE – Remote Business Email Compromise (BEC) Analyst – $100k–$150k DOE – Flexible Working

Looking for a Business Email Compromise (BEC) Analyst to join a high-performing cyber incident response team. This is an opportunity to work remotely, investigating email compromises and analyzing forensic data to uncover methods of attack, data access, and exfiltration. Ideal for those with a mix of incident response and digital forensics experience.

Role

  • Investigate M365, Exchange, and Google Workspace compromises using logs (Unified Audit, IIS, Admin, OAuth).
  • Use Python and PowerShell scripts to support investigations and develop automated solutions.
  • Analyze email headers and digital forensic artifacts to determine compromise scope and access methods.
  • Provide detailed technical reports and clear updates to clients during investigations.
  • Correlate events across data sources to develop incident timelines and insights.

Experience Required

  • Experience with M365, Google Workspace, and Exchange log analysis.
  • Background in forensic tools like EnCase, FTK, Splunk, and open-source apps.
  • Knowledge of scripting (Python or PowerShell) and automated tools for incident response.
  • Ability to manage multiple investigations simultaneously and work after hours as needed.
  • Cybersecurity certifications (CCE, EnCE, GCFA, etc.) are highly desirable.

Quick Interview Turnarounds! Looking to hire immediately with start dates in Q1 2025.

For immediate consideration, send your resume directly to [insert email].

#IncidentResponse #BECAnalyst #DigitalForensics