Principal Consultant (Remote-U.S. Based)

Title: Principal Consultant - DFIR

Work Location: Remote

Travel: As Needed (Up to 30%)

Summary:

Since 2009, Kivu has specialized in identifying, containing, and mitigating cyber threats. Boasting a legacy of over 16 years, Kivu has established itself as a global leader in incident response. In 2024, Kivu was acquired by Quorum Cyber, one of the fastest-growing cybersecurity companies in North America. Protecting over 400 customers across four continents, we deliver tailored, threat-led cybersecurity services that empower organizations to stay ahead of attackers, align security with business goals, and thrive in an unpredictable digital world. Our culture fosters innovation, collaboration, and continuous learning. We're passionate about cybersecurity and dedicated to building a supportive, inclusive environment where our team can develop, grow, and win.

Job Description:

Kivu Consulting’s Incident Response practice is rapidly growing, and we are hiring a Principal Consultant in Incident Response to work with our expansive customer base. We are continuing to enhance our incident response, forensics, and threat hunting team capabilities. By joining Kivu Consulting, you will be part of a highly specialized team to respond to data breaches in complex business environments using a variety of tools and techniques. As a teammate, you will work in a fast-paced and highly collaborative environment alongside a diverse and talented team in support our mission of providing world-class incident response services to our clients.

Required Knowledge, Skills, Abilities:

• Minimum 5-8 years of information security experience


• Minimum 3 years of professional consulting experience in a client facing capacity


• Technical expertise in at least three of the following areas:


• Windows disk and memory forensics


• Network Security Monitoring (NSM), network traffic analysis, and log analysis


• Unix or Linux disk and memory forensics


• Static and dynamic malware analysis


• Applied knowledge in at least one scripting or development language (such as Python)


• Thorough understanding of enterprise security controls in Active Directory / Windows environments


• Cloud services such as Azure, AWS and GCP


• Must be eligible to work in United States

Preferred Requirements:

• Ability to leverage project management skills to effectively budget, scope, and execute engagements


• Ability to manage multiple projects and manage tight deadlines


• Superior communication skills including precise and detail focused writing ability


• Ability to lead a team of highly technical security professionals


• Ability to prepare and review customized contracts for IR consulting services


• Strong consultative, trusted advisor skills


• Willingness to travel up to 30%


• Bachelor’s or Master’s degree in a technical field
  

Responsibilities and Duties:

• Manage consulting engagements, with a focus on incident response and forensics. Provide both subject matter expertise and project management experience to serve as the “point person” for client engagements


• Recommend and document specific counter-measures and mitigating controls


• Assist with scoping prospective engagements, participating in engagements from kickoff through full remediation, and mentoring less experienced staff


• Identify, market, and develop new business opportunities


• Develop comprehensive and accurate reports and presentations for both technical and executive audiences


• Utilize MSFT technology to conduct large-scale investigations and examine host and network-based sources of evidence


• Mentor staff, providing feedback and coaching, and grow their technical and consulting skills


• Improve Kivu's business processes and incident response methodologies

Equipment Used:

All equipment required to perform duties and tasks were previously described.

Physical / Environmental Factors:

The physical demands are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Kivu Consulting considers applicants for all positions without regards to race, color, national origin, age, religion, sex, marital status, veteran or military status, disability, or any other legally protected status. Kivu Consulting is an Equal Opportunity Employer.

Benefits:

• 
  Flexible PTO


• 
  Medical, Dental, and Vision


• 
  401k


• 
  Remote Work