Memory Forensic(senior consultant)

Job Description:

We are looking for experienced Memory Forensic Senior Consultants to support advanced cyber forensic investigations. The role involves analyzing system memory, identifying cybercrime artefacts, reconstructing attack timelines, and ensuring proper evidence handling across physical, virtual, and cloud environments.

Key Responsibilities:

• Analyze computer memory (RAM) dumps to identify cybercrime artefacts and system runtime activity
• Collect and examine artefacts such as running processes, encryption keys, chat records, user activity, and active network connections
• Perform memory forensic analysis and extract Indicators of Compromise (IOCs)
• Acquire memory from Windows, Linux, macOS, and multiple devices
• Detect intrusions, reconstruct incidents, and establish attack timelines
• Use forensic tools including EnCase, FTK, Volatility Framework, Redline, imaging tools, and write blockers
• Analyze process memory, event logs, registry artefacts, and network traffic
• Capture, analyze, and present network data to identify anomalies and vulnerabilities
• Conduct investigations in virtual and cloud environments (Dropbox, Google Drive, OneDrive, etc.)
• Perform remote data acquisition and preservation of digital evidence
• Ensure proper evidence management and chain of custody
• Prepare forensic documentation, reports, and SOPs
• Provide technical briefings and updates to management
• Research and adopt new forensic tools and techniques

Skills & Requirements:

• Minimum 5 years of experience in cyber forensics with strong exposure to disk and memory forensics
• Hands-on experience with EnCase, FTK, imaging tools, and memory forensic frameworks
• Strong understanding of process memory, registry, event logs, and network forensics
• Experience in cloud forensic analysis and remote acquisition
• Proficiency in forensic documentation, reporting, and evidence handling procedures

Qualifications:

• B.E / B.Tech / M.Tech / MCA / MBA / PG from a recognized university/institution
• Bachelor’s or Master’s degree in IT, Computer Science, Electronics & Telecommunication, or related fields
• Industry certifications such as GNFA, GCFA, CHFI, or equivalent are preferred

Job Type: Full-time

Benefits:

• Provident Fund

Work Location: In person