Cybersecurity Incident Response Specialist

TL;DR

Cybersecurity Incident Response Specialist (DFIR): Investigating security incidents and performing digital forensics with an accent on malware triage, memory forensics, and compromise assessments. Focus on turning chaos into clarity by analyzing complex attacks and improving detection capabilities.

Location: Hybrid in Riyadh (Saudi Arabia) or Doha (Qatar)

Company

hirify.global is a professional services firm operating the NetWitness Incident Response team to help organizations recover from complex cyber attacks.

What you will do

• Conduct cyber incident investigations and digital forensic analysis with high precision.
• Perform malware triage, memory forensics, and compromise assessments.
• Document technical findings clearly for both technical and non-technical stakeholders.
• Collaborate with global NetWitness IR experts to respond to complex attacks.
• Share knowledge and improve detection mechanisms to enhance organizational security.

Requirements

• At least 5 years of solid, hands-on experience in cybersecurity.
• Minimum 2 years of direct involvement in incident response, digital forensics, or malware analysis.
• Strong technical foundation in Windows, Linux, and network investigations.
• Proficiency with tools such as NetWitness, Volatility, or Velociraptor.
• Scripting skills in Python, PowerShell, or Bash.
• Fluency in English is required.

Nice to have

• SANS certifications (GCFA, GREM, GNFA, GCFE, etc.).
• Proficiency in Arabic.
• Visible public research or open-source projects in DFIR or malware analysis.

Culture & Benefits

• Collaboration with world-class digital forensics and incident response professionals.
• Exposure to major cybersecurity incidents using industry-leading tooling.
• A team culture that values curiosity, professional rigor, and wit.
• Growth opportunities through global collaboration and SANS-aligned training.