Manager, Incident Response

Manager, DFIR

Are you looking for tremendous exposure to a wide variety of different cases and technologies, to be recognized for your accomplishments, to learn new skills and attend training?

If you are prepared to join a collaborative environment and make an impact we are ready for you!

The location of this position flexible within BC and ON to work near an office or remotely.

Applicants must be legally authorized to work in Canada. This role is not eligible for sponsorship, and we are unable to sponsor or take over sponsorship of an employment visa or work permit.

The salary range for this position is $125,000 - $140,000 CAD. The actual salary will vary based on applicant’s education, experience, skills and abilities, as well as internal equity.

Aon also offers you a generous incentive earning opportunity and a comprehensive benefits package.

Aon is in the business of better decisions

At Aon, we shape decisions for the better to protect and enrich the lives of people around the world. As an organization, we are united through trust as one inclusive, diverse team, and we are passionate about helping our colleagues and clients succeed.

What the day will look like

You will manage high profile and sophisticated cases as a first responder. With teams in our innovative DFIR labs, every day is a new day, leading your team to respond to breaches, nation-state attacks, ransomware and reverse malware engineering, to name a few.

• Manage the most sophisticated forensic analyses handled by the firm.
• Investigate network intrusions and other cybersecurity incidents to understand the cause and extent of the breach.
• Perform host-based and network-based analysis across all major operating systems and network device platforms.
• Produce high-quality oral and written work product and deliver expert opinions based on analysis.
• Lead, mentor and develop junior DFIR staff.
• Investigate instances of malicious code and documents to determine attack vectors and payloads and conduct basic malware analysis.
• Develop and refine policies and procedures for forensic and malware analyses.
• Explain technical concepts to a non-technical audience.

How this opportunity is different

Aon Cyber is the only team in the market that has the scope and breadth of services to offer clients in any area of the cyber life cycle.

The team works closely together to ensure learning, growth and career development. And we invest in you, in the form of mentorship and hefty training budgets to attend security training and conferences.

Skills and experience that will lead to success

• Hands-on technical Incident Response experience, responding to breaches, APT, malware, ransomware, business email compromise, etc.
• You have or are working towards certifications such as GCFE, GCIH, CCE, EnCE.
• Experience with common operating systems such as (Windows, macOS, Linux, iOS, Android) and their file systems (ext3 / 4, HFS+, APFS, NTFS, exFAT, etc.)
• Hands-on work with industry-standard DFIR toolsets, including X-Ways, EnCase, Axiom / IEF, Cellebrite, FTK, Pstools and Volatility.
• Database querying and analysis, conducting log analysis of Windows Event Logs, Apache, IIS, and firewall logs and with cloud infrastructures for enterprise, such as Amazon Web Services, G Suite, Office 365, and Azure.
• Experience with command line tools and working knowledge of python.

Education

Relevant and related industry experience required.

How we support our colleagues

In addition to our comprehensive benefits package, we encourage a diverse workforce. Plus, our agile, inclusive environment allows you to manage your wellbeing and work / life balance, ensuring you can be your best self at Aon.

Furthermore, all colleagues enjoy two Global Wellbeing Days each year, encouraging you to take time to focus on yourself.

We offer a variety of working style solutions, but we also recognise that flexibility goes beyond just the place of work.

• and we are all for it. We call this Smart Working!
30+ days ago