Lead live incident response engagements end-to-end — scoping, containment, evidence acquisition, forensic analysis, and final reporting — across BEC, ransomware/DFIR, data breach, compromise assessment, insider, and digital forensics cases.
Run the technical investigation across Windows, Linux, macOS, and cloud environments, making the call on direction and standing behind the quality of findings.
Carry multiple concurrent engagements of standard complexity, balancing competing priorities and keeping each case moving without dropping quality.
...