Cyber Incident Response & Digital Forensics

New York, NY


Apply Save

Type: Contract

Category: Security

Industry: Financial Services

Reference ID: JN -042026-106395

Date Posted: 04/14/2026

Shortcut: http://careers.eliassen.com/4SinUr


Description:

Hybrid 4+ days onsite in New York, NY

 

Our client seeks a cybersecurity professional with strong digital forensics and incident response experience to support a 24x7 operations environment. The role will investigate incidents, perform memory, disk, and image forensics, and enhance security tooling and processes. The professional will analyze complex security data, communicate findings to technical and executive stakeholders, and help mature security architecture and standards. This role will influence post-incident improvements and contribute to cybersecurity platform objectives.

 

Due to client requirements, applicants must be willing and able to work on a w2 basis. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.

 

Rate: $70.00 to $90.00/hr. w2

 #LI-JS1

JN -042026-106395


Responsibilities:
  • Support a 24x7 cyber operations center through cyber incident investigation, triage, and response activities.
  • Use tools such as Splunk, Microsoft Defender, and CrowdStrike to support incident analysis and response.
  • Collect, interpret, and communicate technical information from investigative artefacts to executive leadership.
  • Conduct memory, disk, and image forensics during active investigations and triage efforts.
  • Communicate clearly with technical and non-technical audiences during incidents and post-incident activities.
  • Provide senior-level consultation for information security infrastructure, including deployment and optimization of tools such as Axiom Forensics, Splunk, Microsoft Defender, and CrowdStrike.
  • Contribute to the development and implementation of security architecture, standards, procedures, and guidelines across multiple platforms.
  • Partner with business and operational infrastructure teams to recommend post-incident security improvements and support implementation.
  • Review and analyze complex security data to provide insights, conclusions, and actionable recommendations.
  • Define, implement, and apply security and continuity of business policies and standards aligned to recognized information security principles.
  • Address high-risk security concerns and incidents, recommend risk mitigation actions, and support the publication of standards.
  • Contribute to broader cybersecurity platform objectives.

Experience Requirements:
  • Significant experience in digital forensics, incident response, cybersecurity operations, or a related information security function.
  • Experience supporting or operating within a 24x7 cyber operations center environment.
  • Hands-on experience with Splunk, Microsoft Defender, and CrowdStrike, and other incident response or threat detection platforms.
  • Experience conducting digital forensic investigations, including memory, disk, and image analysis.
  • Ability to collect, interpret, and communicate technical incident information to diverse stakeholder groups.
  • Strong verbal and written communication skills for technical and non-technical audiences.
  • Ability to manage multiple priorities, adapt quickly, and work effectively under pressure.
  • Experience supporting enterprise information security infrastructure and optimizing security tooling.
  • Strong analytical and problem-solving skills with the ability to assess complex data and produce actionable recommendations.
  • Understanding of information security standards, controls, policies, and industry best practices.
  • Experience addressing high-risk security concerns and supporting remediation or mitigation efforts.
  • Splunk certification or equivalent demonstrated expertise (preferred).
  • Experience contributing to security architecture and enterprise security standards in large, complex organizations (preferred).
  • Familiarity with continuity of business principles and related security requirements, NIST, ISO (preferred).
  • Previous enterprise cyber incident response experience in a large financial institution (preferred).

Education Requirements:
  • Splunk certification or equivalent demonstrated expertise.

Recruitment Transparency Notice
 
Eliassen Group values transparency in our recruitment practices. Please be advised that Eliassen Group utilizes artificial intelligence (AI) tools as part of its initial application screening and hiring process. You may receive email and SMS notifications from the Eliassen Virtual Recruiting Team (noreply@eliassen.com, 781-808-2924) inviting you to complete a brief voice screening as part of your application process. These tools assist our hiring teams in different ways, including but not limited to, assistance in reviewing application materials to help identify candidates whose qualifications most closely match the requirements of the position. All AI-assisted evaluations and responses are reviewed by human recruiters before any hiring decisions are made. The use of AI in our process is intended to support fairness, efficiency, and consistency, and Eliassen Group takes measures to prevent bias or discrimination in connection with its hiring practices. By proceeding, you acknowledge, agree, and consent to Eliassen Group’s use of these tools, including AI tools, as part of the application and hiring process.
 

Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality.
If anyone reaches out to you about an open position connected with Eliassen Group, please ensure that you are working directly with us by confirming the following:

· When you work with Eliassen Group, all email communication will come from an Eliassen.com address, never Gmail, Yahoo, etc.

· Eliassen Group will never ask you for personal information (home address, bank account, or check routing number) until you have worked with someone clearly associated with Eliassen Group.

If you have any indication of fraudulent activity, please contact fraud@eliassen.com.

 
About Eliassen Group:
 
Eliassen Group is a strategic consulting firm that helps organizations reach further and achieve more through our technology, business advisory, and life sciences solutions. For nearly 40 years, we have combined exceptional people, deep domain expertise, and intelligent capabilities to expand our clients’ capacity and accelerate meaningful outcomes. We are driven by a purpose to positively impact the lives of our employees, clients, consultants, and the communities we serve.
 
Eliassen is committed to building a diverse and inclusive team from a variety of backgrounds, perspectives, and skills. We are an Equal Opportunity and Affirmative Action Employer and all employment decisions are based on merit, performance, and business needs. Eliassen does not discriminate on the basis of race, color, gender identity or expression, sexual preference or orientation, sex (including pregnancy, childbirth, and related medical conditions), marital status, creed, religion, physical or mental disability, genetic information, military or veteran status, age, ancestry, national origin, citizenship status, prohibited criminal record inquiries of applicants and employees, or any other category protected by federal, state, or local laws.
 
Don’t miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!
 

  • Cybersecurity Analyst

     Cranberry Township, PA

    Description: Hybrid 3 in Cranberry Township, PA The Cybersecurity Analyst will safeguard the organization’s information systems and data by monitoring security events, analyzing vulnerabilities, and responding to incidents. The role requires hands-on e...

    Date Posted: 04/01/2026 Recommended

  • Cybersecurity Architect (Palo Alto / Network Security)

     Tustin, CA

    Description: Onsite in Tustin, CA The Cybersecurity Architect will provide senior technical leadership to design and implement enterprise security architecture for the organization. The role focuses on Palo Alto Networks platforms, VPN, wireless securi...

    Date Posted: 04/16/2026 Recommended

  • Information System Security Officer / Information System Engineer

     Aberdeen Proving Ground, MD

    Description: Onsite in Aberdeen Proving Ground, MD Our client seeks an Information System Security Officer / Information System Engineer to guide Cybersecurity policy, RMF processing, and accreditation activities. The role will manage eMASS record keep...

    Date Posted: 04/12/2026 Recommended

  • Senior Database Administrator

     Washington, DC

    Description: Onsite in Washington, DC Our client seeks a Senior Database Administrator to lead SQL Server migrations from on‑premises to Google Cloud and to administer large, high‑availability database environments. The role covers installation, config...

    Date Posted: 03/21/2026 Recommended

  • Principal Software Engineer

     Jersey City, NJ

    Description: Hybrid 50% ON SITE, half remote, work site either Jersey City, NJ or Westlake, TX Our client seeks a Principal Software Engineer to advance an enterprise AI/ML platform within a large, highly regulated industry environment. This role is id...

    Date Posted: 03/24/2026 Recommended

  • Security Administrator

     Cincinnati, OH

    Description: Hybrid 4 days week onsite, then 3 days onsite/2 remote in Cincinnati, OH We are hiring a Security Administrator for our client, a leading plumbing, sewer, and water damage company headquartered in Cincinnati, Ohio. The role will secure ent...

    Date Posted: 04/04/2026 Recommended

  • Sr. Cellular / RF Engineer II

     Washington dc, DC

    Description: Onsite in Washington, DC The organization seeks a Sr. Cellular / RF Engineer II to design and optimize secure wireless connectivity for mission-critical federal environments. The role focuses on RF and cellular engineering, including site ...

    Date Posted: 04/07/2026 Recommended

  • Senior Systems Engineer

     Aberdeen Proving Ground, MD

    Description: Onsite in Aberdeen Proving Ground, MD our client seeks a Senior Systems Engineer to support the Program Manager for Network Modernization Secure Wireless program. The role focuses on CSfC architectures, tactical networking, and lifecycle s...

    Date Posted: 04/14/2026 Recommended

  • Security Operations Engineer

     New York, NY

    Description: Hybrid 4 in either New York, NY or Pittsburgh, PA The organization seeks a Security Operations Engineer to strengthen and operate a FedRAMP-aligned Azure environment using native Microsoft security tooling. The role will design detections,...

    Date Posted: 03/30/2026 Recommended

  • Sr. Electrical Power Engineer II

     Washington dc, DC

    Description: Onsite in Washington, DC Our client seeks a Sr. Electrical Power Engineer II to lead the design, evaluation, and sustainment of electrical power systems for mission-critical telecommunications infrastructure. The role emphasizes reliabilit...

    Date Posted: 04/12/2026 Recommended

  • Advanced Grafana Engineer

     Concord, CA

    Description: Hybrid 3 days/week in Concord, CA Our client seeks an Advanced Grafana Engineer to design, build, and operate observability solutions at scale. The role will focus on Grafana dashboards, alerting, and integrations with GCP, BigQuery, Prome...

    Date Posted: 04/09/2026 Recommended

  • Senior CyberArk Engineer

     Anywhere

    Description: Remote Our client seeks a Senior CyberArk Engineer to support the Department of Transportation’s privileged access management program. The role will contribute to deployment, maintenance, and reporting of CyberArk across development, test,...

    Date Posted: 03/29/2026 Recommended

  • Service Desk/PowerUp Technician

     Wilmington, DE

    Description: Onsite in Wilmington, DE Our client seeks a PowerUp Technician to provide walk-up technical support for internal associates in a high-traffic campus environment. The role focuses on laptops, with an even mix of Windows and macOS, plus mobi...

    Date Posted: 04/06/2026 Recommended

  • Systems Engineer

     Merrimack, NH

    Description: Hybrid 50% on site, requires local candidates able to work physically in Merrimack, NH We are seeking a highly motivated Systems Engineer to join a Production / Site Reliability Engineering (SRE) team within a large financial services envi...

    Date Posted: 03/31/2026 Recommended

  • IT Infrastructure Engineer/Administrator

     Boston, MA

    Description: Onsite in Boston, MA Seaport Area of Boston, 5 days a week onsite for the first few months, flexible for 3-4 days onsite after that. Interview: virtual, then onsite. Contract to hire role. Our client seeks a senior IT Infrastructure Engine...

    Date Posted: 04/11/2026 Recommended

  • Physical Security Systems Engineer

     Austin, TX

    Description: Hybrid Monday - Thursday in either Austin, TX or Salt Lake City, UT or Dublin, IE The organization seeks a Physical Security Systems Engineer to support and optimize enterprise physical security technologies. The role will administer acces...

    Date Posted: 03/26/2026 Recommended

  • Sr. Network Engineer III

     Washington dc, DC

    Description: Onsite in Washington, DC Our client seeks a Sr. Network Engineer III to serve as a subject matter expert for unified communications across voice, video, and collaboration platforms in a mission-critical environment. The role requires deep ...

    Date Posted: 04/07/2026 Recommended

  • Sr. Telecommunications Design Engineer III

     Washington dc, DC

    Description: Onsite in Washington dc, DC Our client seeks a Sr. Telecommunications Design Engineer III to provide senior technical leadership for mission-critical telecommunications operations and long-range modernization. The role will design and sust...

    Date Posted: 04/12/2026 Recommended

  • Sr. Senior Platform Engineer III

     Washington dc, DC

    Description: Onsite in Washington dc, DC Our client seeks a Sr. Senior Platform Engineer III to design and operate Kubernetes platforms for mission-critical federal workloads. The role spans CI/CD, infrastructure automation, and platform reliability, p...

    Date Posted: 04/12/2026 Recommended

  • Principal Android Engineer

     Merrimack, NH

    Description: Hybrid every other week onsite in Merrimack, NH Our client engages product-aware engineers to build omni-channel, consumer-grade Android experiences. Teams deliver features end to end, influence platform standards, and iterate quickly whil...

    Date Posted: 04/05/2026 Recommended

  • Cybersecurity Software/Data Engineer

     Anywhere

    Description: Remote The Security Software Data Engineer will join a mature Agile squad that maintains security products and builds custom cybersecurity integrations across applications. The role requires proficiency with one or more general-purpose pro...

    Date Posted: 03/23/2026 Recommended

  • Sr. Network Engineer III

     Washington dc, DC

    Description: Onsite in Washington, DC The Sr. Network Engineer III will serve as a subject matter expert for unified communications across voice, video, and collaboration platforms in a fast-paced, mission-critical environment. The role will design, im...

    Date Posted: 04/08/2026 Recommended

  • Senior API Developer

     Anywhere

    Description: Remote The organization seeks a Senior API Developer to design, develop, and maintain APIs and system integrations across a digital ecosystem. The role will utilize Microsoft Azure services including API Management, Application Gateway, Lo...

    Date Posted: 03/23/2026 Recommended

  • FedRAMP & AWS GovCloud Program Lead

     Anywhere

    Description: Remote Our client seeks a senior FedRAMP and AWS GovCloud leader to advise telecommunications and regulated clients on modernization, migration, and authorization. The role owns strategy, roadmap, and oversight to move legacy workloads to ...

    Date Posted: 03/30/2026 Recommended

  • Power Apps and Power Automate Developer

     Charlotte, NC

    Description: Hybrid 3 days on-site in Charlotte, NC Our client seeks a Power Apps and Power Automate Developer to design and implement automation solutions that streamline workflows and integrate data across platforms. The role will build secure, scala...

    Date Posted: 04/05/2026 Recommended

  • Senior Data Engineer

     Cincinnati, OH

    Description: Onsite in Cincinnati, OH The Senior Data Engineer will design and deliver scalable data solutions that enable secure data management, analytics, and business intelligence for the organization. The role requires proficiency with SQL, a mode...

    Date Posted: 03/24/2026 Recommended

  • Sr. Software Developer III

     Washington dc, DC

    Description: Onsite in Washington, DC The organization seeks a Sr. Software Developer III to design, build, and deliver secure, reliable enterprise software for a mission-critical federal environment. The role requires deep expertise in C#, .NET, and m...

    Date Posted: 04/15/2026 Recommended

  • Adaptiv Market Risk Platform Engineer (Linux/Unix)

     Cincinnati, OH

    Description: Onsite in Cincinnati, OH Our client seeks a Platform Engineer to support and maintain a market risk platform used for regulatory, stress testing, and daily risk reporting. The role focuses on production support for batch-oriented, compute-...

    Date Posted: 03/23/2026 Recommended

  • Office 365 / Power Platform Engineer

     Anywhere

    Description: Remote The organization seeks an Office 365 / Power Platform Engineer to design and integrate API-driven automation on Microsoft Power Platform. The role requires hands-on JavaScript or TypeScript API development, RESTful integrations, and...

    Date Posted: 04/08/2026 Recommended

  • Sr. Systems Engineer

     Washington dc, DC

    Description: Onsite in Washington, DC our client seeks a Sr. Systems Engineer to manage and secure enterprise Windows and macOS endpoints for a high-visibility federal mission. The role will support classified and high-security environments, deliver co...

    Date Posted: 04/05/2026 Recommended

Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status. Eliassen Group’s Affirmative Action Plan (AAP) is available for inspection by any employee or applicant for employment upon request, during normal business hours of Monday through Friday, 8:30am to 5:30pm EST. Interested persons should contact Phaedra Wells at pwells@eliassen.com for assistance. It is unlawful in Massachusetts and Maryland to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Applicants with disabilities that believe they require an accommodation or assistance with a position, please email our HR team at hradmin@eliassen.com. This email inbox is designed exclusively to assist job seekers whose disability prevents them from being able to apply online. Emails sent for other purposes will not receive a response.


Please be advised that a number of fraudulent job postings have been released under the Eliassen Group brand.

Unfortunately, fraudulent job postings can happen. If anyone reaches out to you about an open position connected with Eliassen Group, never provide personal or financial information to anyone who is not clearly associated with Eliassen Group

If anyone seemingly from Eliassen Group has ever requested this personal information in the past or does so in the future, please contactInfoSec@eliassen.com.

Please ensure that you are working directly with us by confirming the following:

  • When you work with Eliassen Group, all email communication will come from an Eliassen.com address, never Gmail, Yahoo, etc.
  • Eliassen Group will never ask you for personal information (home address, bank account, or check routing number) until you have worked with someone clearly associated with Eliassen Group, as indicated above