G42
Security Engineer (DFIR Lab)
- Permanent
- Abu Dhabi, United Arab Emirates
- Experience 5 - 10 yrs
Job expiry date: 01/03/2026
Job overview
Date posted
15/01/2026
Location
Abu Dhabi, United Arab Emirates
Salary
AED 20,000 - 30,000 per month
Compensation
Comprehensive package
Experience
5 - 10 yrs
Seniority
Experienced
Qualification
Bachelors degree
Expiration date
01/03/2026
Job description
The Security Engineer (DFIR Lab) role at CPX in Abu Dhabi is responsible for managing, maintaining, and securing the Digital Forensics and Incident Response (DFIR) Lab infrastructure, including hardware, software, processes, and documentation. The role ensures optimal availability, performance, security, privacy, and data integrity of the DFIR Lab environment to support forensic investigations and cyber incident response engagements. Responsibilities include deploying, configuring, and maintaining forensic and incident response tools such as EnCase, Magnet Axiom, FTK, FTK Imager, Cellebrite, THOR, Velociraptor, KAPE, IDA Pro, and Security Onion, as well as configuring forensic workstations, laptops, war laptops, servers, and storage systems. The role manages lab asset inventories, licensing, renewals, budgeting contributions, access controls, logging, audit trails, and monitoring solutions. It involves developing scripts or automation to streamline DFIR workflows, maintaining SOPs, documenting forensic processes and lab configurations, collaborating with customers during assessments and incident response engagements, and executing lab tasks in support of DFIR operations. The position requires strong experience with Linux systems, networking devices, virtualization using VMware ESXi, storage technologies, cloud-based environments, evidence handling, forensic hardware such as write blockers and specialized cables, and familiarity with security monitoring, EDR, NDR, intrusion detection, and log management within a secure technical lab environment.
Required skills
Key responsibilities
- Manage and maintain DFIR Lab infrastructure including hardware, software, processes, and documentation
- Ensure availability, performance, security, privacy, and data integrity of DFIR Lab systems
- Maintain DFIR Lab asset inventory and support license renewals, purchases, and budgeting activities
- Deploy, configure, and maintain forensic and incident response tools such as EnCase, Magnet Axiom, FTK, Cellebrite, THOR, Velociraptor, KAPE, IDA Pro, and Security Onion
- Configure and optimize forensic workstations, laptops, servers, and storage systems
- Implement access controls, logging, audit trails, and monitoring solutions within the lab environment
- Evaluate, test, and recommend new DFIR tools and technologies to enhance lab capabilities
- Develop scripts or automation tools to improve DFIR workflow efficiency
- Create, update, and maintain SOPs, process documentation, lab configurations, and tool usage guidelines
- Collaborate with customers to deploy hardware and software for assessments and incident response engagements
- Execute lab tasks in support of cyber incident response and digital forensics engagements
Experience & skills
- Demonstrate 5+ years of experience working in a technical lab, data center, DFIR, or system engineering environment
- Possess strong hands-on experience with digital forensics and incident response tools and lab environments
- Demonstrate experience with Linux system structure, commands, and tools
- Show experience with networking devices including switches, routers, and firewalls
- Demonstrate experience with virtualization technologies such as VMware ESXi
- Exhibit familiarity with evidence management and data acquisition in DFIR lab environments
- Demonstrate experience managing cloud-based environments
- Hold or pursue relevant certifications such as CCE, CHFI, GCFE, INE Security, Microsoft, Azure, VMware, RedHat, or similar security, DFIR, or infrastructure certifications