dfir consultant

vor 2 Wochen

Köln, Nordrhein-Westfalen, Deutschland Zync Group Vollzeit 60.000 € - 85.000 € pro Jahr

I am hiring a DFIR Consultant on behalf of a German IT-security and compliance firm providing holistic advisory, managed services, and training across regulated industries. They specialise in risk management, penetration testing, incident response, cloud security, and ISMS (e.g., ISO 27001, TISAX) implementation. They also offer AI-driven tools for managing information-security systems and compliance (e.g. NIS2, DORA, AI Act), plus scalable security operations (SOC, vulnerability management), and role-based training via a SaaS academy.

In this role you will be responsible for:

  • Lead and support digital forensics and incident response engagements, including evidence acquisition, malware analysis, log analysis, attacker tracing and containment recommendations.
  • Perform proactive threat hunting and compromise assessments, identifying abnormal behavior across endpoints, networks, cloud environments, and identity systems.
  • Investigate security alerts and complex security incidents in collaboration with their SOC, penetration testers, and compliance teams to provide a complete security picture.
  • Prepare technical reports, forensic documentation, and executive summaries, including root cause analyses, remediation plans, and improvement recommendations.
  • Support clients in building IR readiness, including playbooks, runbooks, tabletop exercises, and the integration of detection & response improvements

This position can be hybrid in North Rhine-Westphalia or remote.

Essential:

  • Degree in Computer Science, Cyber Security, or a related technical discipline.
  • Hands on DFIR experience
  • Technical proficiency in forensics and investigation tools
  • Solid understanding of operating systems, networks, and cloud environments, including log sources, authentication flows, and common attack vectors
  • Knowledge of scripting or automation
  • GCFA – GIAC Certified Forensics Analyst Certification

  • Strong analytical and communication skills, able to translate technical findings into business-relevant insights for client

  • Strong communication skills C1 level German and fluent English

Desirable:

  • Experience with malware reverse engineering or memory forensics.

  • Knowledge of compliance frameworks relevant to incident handling e.g. ISO 27001, TISAX, NIS2.

  • Experience in penetration testing or red teaming.

Company Benefits:

  • Modern and easily accessible workplace
  • Flexible working
  • Culture of excellence
  • Autonomous working
  • Attractive company pension plan
  • Excellent training budget
  • Collaborative environment
  • 30 days of paid vacation plus additional benefits

CALL TO ACTION

If you have the required skills and would like to have a positive impact on people's lives all over the world via them enjoying the products you help create, call or send your CV to for a response.

DFIR Consultant – North Rhine-Westphalia/Germany – Up to €85k DOE – 5989

CONTACT CONSULTANT

ADEN GWYNNE

.IO