Description
Responsibilities:
Collect, process, analyze, interpret, preserve, and present digital evidence
Perform forensic triage of an incident to include determining scope, urgency and potential impact
Conduct analysis of forensic images, and available evidence in support of forensic write-ups for inclusion in reports and written products
Document forensic analysis from initial participation through resolution
Document forensic workflows based on sound industry practice
Investigate data breaches leveraging traditional forensic tools and cloud-specific tools to determine the source of compromises and malicious activity
Support incident response engagements, perform forensic investigations, contain security incidents, and provide guidance on longer term remediation recommendations
Develop, document and refine procedures to accomplish discovery process requirements
Manage all chain of custody best practices associated with the rules of evidence
Mentor team members in incident response and forensics best practices to cultivate secondary resources to assist in larger collection events
Required Skills
Solid understanding of the forensic lifecycle and scoping activities, evidence acquisitions on a range of devices
Forensics analysis background on following platforms and technologies
6+ years of incident response or digital forensics experience with a passion for cyber security; or equivalent educational experience in Information Security, Computer Science, Digital Forensics, Cyber Security or related field
Proficient with host-based forensics and data breach response
Hands-on experience with architecting, building, operating, investigating, and troubleshooting large and complex cloud environments, DevSecOps experience is a value add
Understand and demonstrate best practices for architecting and operating in multi cloud environments in a scalable manner
Experience with large-scale application administration and debugging, Cloud Security Posture Management (CSPM) solutions, or automation via scripting or cloud-native approaches
Experience using industry standard forensic tools
Experience preserving desktops, laptops, mobile devices/tablets, servers, both cloud and on-premises email implementations, nontraditional cloud data sources, social media, etc. in a forensically sound manner
Education
Any Gradute
- Posted On: 04-Sep-2024
- Experience: 6+ years of experience
- Openings: 1
- Category: IT security specialist
- Tenure: Contract - Corp-to-Corp Position