Forensic & Litigation Consulting

Cybersecurity

What We Do

The FTI Cybersecurity EMEA team are a dynamic and skill-diverse group of individuals driven by a single goal: empowering our clients to operate in the most secure manner possible. The varied professional backgrounds boasted by our team include senior national security roles, Big Four consultancy, military engineering, digital forensics, corporate cybersecurity advisory and academia – with each of these providing valuable approaches and perspectives to the work we deliver. Our projects are varied and exciting; whilst, at times, our clients approach us to help them proactively identify the critical security gaps in their infrastructure, the FTI Cybersecurity team regularly respond to clients in distress who’ve fallen victim to cyber attacks of varying types and severity. We excel at, and are motivated by, solving complex challenges and offering constructive solutions to difficult cybersecurity questions; and our high client return rate is demonstrative of our commitment to cultivating client relationships, discretion, agile responsiveness, thorough investigation and unambiguous guidance.

What You Will Do

Graduate Role

The FTI Cybersecurity EMEA team are looking for a Consultant at Graduate level with excellent technical, digital forensic and investigative skills to play a central role in delivering project work.

We are looking for a graduate to join in either our Technical or Readiness team.

The role will require you to perform a wide range of cybersecurity engagements in a fast-paced, deadline-sensitive environment, including:

Technical

  • Analysing technical data quickly to triage breaches and understand root causes and impacts;
  • Perform a significant role in digital forensic investigations;
  • Generating threat intelligence and undertaking digital exposure assessments;
  • Contributing to sophisticated, polished and readable reports for our valued client base of top-tier law firms, financial institutions and multi-national corporations;
  • Developing and maintaining a strong knowledge of industry-critical trends, threats, methodologies and technologies;
  • Supporting remediation activities for post-breach clients, where appropriate;
  • Bringing your expertise and skills to generate thought leadership on relevant topics;
  • Identifying areas for improvement and making suggestions to expand our portfolio of services and/or improve our working efficiency.

Readiness

  • Participate in assessments of threats, vulnerabilities, and risks, applying a combination of technical skills and critical thinking.
  • Collaboratively define cyber strategies and transformation plans for clients.
  • Identify red flags, validating sources, and making judgment calls about the completeness and accuracy of information (especially during M&A cyber due diligence).
  • Utilize threat intelligence to identify, contextualize and analyse emerging threats, vulnerabilities and risks to clients.
  • Develop and innovate technologies and solutions that can be used to assess cybersecurity maturity and risks.
  • Conduct external exposure and threat intelligence assessments using a range of subscription and open-source databases and toolsets to identify the attack surface and threat profile of clients.
  • Maintain current knowledge of industry trends, threats, methodologies and core technologies in order to assimilate client needs and provide appropriate advises and recommendations.
  • Act as a coach and mentor for readiness work, and provide support and training materials to others across the global team.
  • Develop new tools to build on and expand our existing readiness methodologies, approaches and offerings.
  • Assist leadership in developing strategies to expand the portfolio of services offered and improve the efficiency and consistency of service delivery.

Summer Intern Role

The FTI Cybersecurity EMEA team are looking for an intern with excellent technical, digital forensic and investigative skills to play a central role in delivering project work. The role will require you to perform a wide range of cybersecurity engagements in a fast-paced environment, including:

  • Analysing technical data quickly to triage breaches and understand root causes and impacts;
  • Leading digital forensic investigations;
  • Generating threat intelligence and undertaking digital exposure assessments;
  • Contributing to sophisticated, polished and readable reports for our valued client base of top-tier law firms, financial institutions and multi-national corporations;
  • Developing and maintaining a strong knowledge of industry-critical trends, threats, methodologies and technologies;
  • Supporting remediation activities for post-breach clients, where appropriate;
  • Engage with experts within the FTI team to challenge new ideas and develop thought leadership on relevant topics
  • Identifying areas for improvement and making suggestions to expand our portfolio of services and/or improve our working efficiency.

What We Offer You

As a relatively new team within FTI Consulting, our spirit is fundamentally entrepreneurial – we thrive on initiative, actively encouraging team members at all levels to own and drive aspects of our development. We are working hard to foster a culture of inclusivity and respect based on team-oriented thinking and honest, open communication. Our leadership acknowledge that team members will have responsibilities and demands on their time outside of work and will always make every effort to offer flexible and/or remote working to accommodate these other priorities. We can offer training options to develop your specific technical skills and experience where necessary.

 

For graduates:

This is an excellent opportunity for a person with proven, hands-on cybersecurity experience to join a dynamic and growing Cybersecurity team. You will have the opportunity to be involved with fascinating, high-paced and high-profile cybersecurity engagements requiring the best talent to provide value to our clients. This position will provide you with the chance to take ownership of a product line and to show initiative, whilst demonstrating and sharing your experience to and with others across the globe. Alongside this you will receive coaching and mentoring from highly experienced cybersecurity professionals and within the team in order to develop your experience and confidence. With the ever-evolving cybersecurity landscape, the need for continuous professional development remains at the forefront of the quality of our team and is wholly supported. We will work with you to develop a career path within the FTI Cybersecurity team so you there is a clear progression path, coupled with the right level of support and guidance to achieve the next step in your career at FTI Consulting.

How to apply

1

Round 1 – Online Application

2

Round 2 – Interviews/Assessment Centre

Requirements for the Graduate Scheme:

The exceptional work that the FTI Cybersecurity EMEA team produce is a result of the exceptional people within it. Our success thus far has been driven by the multidisciplinary backgrounds of our team, and we are proud of our unconventional yet superb talent. Although cyber experience is highly desirable, we are keen to hear from applicants who have proven their technical aptitude in other contexts.

We are looking for a graduate to join either our Readiness team or Technical team.

As a prospective applicant for this role, you will likely have one or more of the following:

Readiness

Required experience:

  • A minimum of 1 year of experience within cybersecurity.
  • A Bachelor’s degree from a top university, specializing in a technical or scientific discipline (Upper Second-Class honors).
  • Strong and demonstrable experience in Excel, PowerPoint and other Office applications.
  • An understanding of cybersecurity control and risk assessment frameworks (E.g. NIST CSF, CIS, NIST 800-53, ISO 27001) and their unique differences.
  • Awareness of the regulatory landscape and well-known data privacy, cybersecurity, and operational resilience regulations.

Desirable experience:

  • Experience creating and generating dashboards, as well as utilizing data visualization software (E.g. PowerBI / Tableau).
  • Experience using threat intelligence tools, frameworks, and OSINT.
  • Experience mapping cybersecurity frameworks and building assessment frameworks.
  • Experience in web application development and/or SQL.
  • Relevant cybersecurity certifications (e.g. CompTIA Security+, CISSP, ISO, CISM, OSCP etc.)

Technical

  • A minimum of a 2:1 degree from a university with a concentration on system and/or network architecture, digital infrastructure or Computer Science preferred. Please note that we are open to advanced degrees in other subjects as long as clear technical aptitude is demonstrated.
  • Proven problem-solving skills and technical expertise, demonstrated across multiple technologies.
  • Comfortable investigating and working within technical domains such as Windows and Linux system administration, identity management, network management and virtualisation, with deep knowledge of the mainstream platforms and tools associated with these areas.
  • Ability to perform a range of digital forensic analyses such as deadbox forensics, malware forensics and mobile device forensics.
  • Familiarity with scripting languages such as Python, PowerShell or Bash, and will be able to demonstrate how you bring these skills to tackle problems you’ve not seen before.
  • Work experience as an incident responder or technical investigator preferred. We are open to hearing from individuals who have gained some experience at other corporate intelligence leaders, cybersecurity or forensics companies, or within the military, law enforcement or government.

 

Requirements for the Summer Internship: 

  • Applicants must be in their penultimate year of studies, working towards a 2:1 degree from a university (preferred concentrations are: corporate intelligence, law, academic research, market analysis, computer science, and network architecture). Please note that we are open to advanced degrees in any subject as long as clear technical aptitude and research and investigative skills are demonstrated.
  • Proven problem-solving skills. These may be technical, demonstrated across multiple technologies and acquired through previously-held positions in systems administration, networking or application development. Alternatively, these skills may have been honed in strategic, consulting or intelligence-based roles.

 

 

At FTI Cybersecurity EMEA, who you are is just as important as the skills you have. Our success is contingent on the quality of our people, and as a prospective applicant to our team you will demonstrate:

  • Excellent communication skills: the ability to build strong rapport with clients is paramount. You must be a personable and skilled communicator, with the ability to quickly and effectively connect with people across a wide range of industry sectors both verbally and in written form.
  • Curiosity and critical thinking: as a team, the ability to think critically is one of our strongest assets. You must be able to efficiently break down, evaluate and respond to a problem with clarity, alacrity, and authority. Your thinking will be logical, informed by your industry knowledge and motivated by a compulsion to solve problems and understand root causes.
  • Initiative: you will be a self-starter, with the confidence to grip and drive projects where appropriate. It is important that you are comfortable asking questions where necessary, and anticipate client needs at all times. You will take pride in delivering excellent work consistently, taking ownership of your output and gathering the requisite information to generate exceptional deliverables.
  • Collaboration: FTI Cybersecurity work as one global P&L, with teams across the world. You will be able to communicate effectively with our non-EMEA counterparts and understand where their expertise might aid your work. Our team also regularly collaborate with other teams within the FTI Consulting EMEA practice (such as Strategic Communications, Data and Analytics and Technology) and you will proactively seek out opportunities to work collaboratively.

Opportunities

Ayala Maurer-Prager

Senior Consultant
Forensic Litigation Consulting - Cybersecurity

The truth is that no two days are ever the same. What makes cybersecurity consulting exciting is that fact that anything can come through the door: you can be carrying out a cybersecurity maturity assessment on a global retail company one day and be responding to a ransomware attack on a hardware manufacturer the next. What stays constant are the skills you need throughout – you always need to be level-headed, clear, personable and authoritative to ensure the best outcomes for your clients.

How did you get into cybersecurity?

My route into the field was not a traditional one by any means! I did a literature-based BA and MA, before embarking on an interdisciplinary PhD which brought together literature, history, politics, psychoanalysis, gender studies and race theory to investigate the cultural underpinnings of resilience in relation to crisis. When I started, I had plans for a career in academia – I soon realised, though, that the often-solitary and highly bureaucratic nature of the field wasn’t for me. Pivoting out of the academy seemed like an enormous challenge. However, when I made a list of the skills I’d acquired and honed over these years – critical thinking, advanced research capabilities, analysis, and communication chief amongst them – I realised that these were hugely transferable. When I saw the job posting for my role on LinkedIn specifically asking for these skills, I was thrilled – the job spoke to my background in crisis and resilience, called upon the very capabilities I’d built as an academic, and appealed to my general interest in the interaction of people and technology. Although I didn’t have a cybersecurity background, a willingness to learn and possession of some key skills got me the job – and the rest is history!

What skills does a cybersecurity professional need?

Some of the most common misconceptions about cybersecurity are contained in the image that most often represents the field on the public stage – that our industry is wholly comprised of people wearing hoodies in dark rooms, hacking away at computers. Of course, cybersecurity has its technical elements; some of our most valuable team members are our technical staff, capable of understanding the most complex network architecture and analysing challenging digital forensics. However – especially in a consultancy context – one of the most important skills for a professional in the field to have is the ability to problem solve on micro and macro levels. You need to be able to understand a problem within the context it arises and think through its dynamics and various dimensions to provide a solution. Whilst some level of technical knowledge is of course necessary – and can be acquired by anyone with enough determination – an appetite for challenge, curiosity, responsiveness, critical thinking and initiative are key. If you have these core capabilities, a career in cybersecurity may well be for you.

What do you find most challenging in the consultancy field?

What I enjoy most and what I find most challenging actually go hand-in-hand: anticipating our clients’ needs. Our team pride ourselves on our ability to be proactive – not only in identifying exactly where an issue lies and what’s causing it, but in providing and helping to implement effective solutions. Our clients often come to us in times of distress and anxiety in the aftermath of a cybersecurity incident. In these instances, we have to manage emotions as well as the practical situation at hand. Both cybersecurity and consultancy have people at their heart – navigating the dynamics of the interpersonal relationships on which our success as consultants and cybersecurity professionals relies is the most exciting and challenging part of my job.

What does a typical day look like?

The truth is that no two days are ever the same. What makes cybersecurity consulting exciting is that fact that anything can come through the door: you can be carrying out a cybersecurity maturity assessment on a global retail company one day and be responding to a ransomware attack on a hardware manufacturer the next. What stays constant are the skills you need throughout – you always need to be level-headed, clear, personable and authoritative to ensure the best outcomes for your clients.

What makes FTI a unique workplace?

FTI’s slogan is ‘Experts with Impact’ – and I believe that is what sets the company apart. Everyone who works at FTI is either an established expert in their field or committed to becoming one. In addition to allowing the firm to boast an incredible array of skillsets and tackle an enormous range of client issues, the business – at all levels – is full of intellectually curious people who aspire to be the best in their respective spaces. Coupled with the concerted and committed efforts the firm is making to increase diversity and gender parity, this makes FTI an inspiring and growth-oriented place to work.

Awards & Recognition

Find the FTI opportunity that fits you

Opportunities