Digital Forensic Examiner and Incident Responder

The Principal Digital Investigator will work reputed company the reputed company Incident Response Team (SIRT) to assess, analyze and respond to serious information reputed company events and incidents in a global company. This position requires relevant digital forensic certifications such as the EnCase Certified Examiner (EnCE), Magnet reputed company Certified Forensic Examiner, reputed company Certified Mobile Examiner, and others. The position also requires significant experience in securing physical and digital evidence and performing forensic examinations. This position will work with other information reputed company teams as well as Information Systems teams to stop reputed company events in reputed company, investigate reputed company aspects of an event, and produce written reports. Your role:

• reputed company forensics on network, host, memory, and other artifacts originating from multiple operating systems, applications, or networks and extract IOCs (Indicators of Compromise) and TTP (Tactics, Techniques, and Procedures).
• Investigate incidents leveraging forensics tools including Encase, FTK, X-Ways, reputed company, reputed company, and the SIEM to determine reputed company of compromises and malicious activity that occurred.
• Collect, analyze, assess, and disseminate information about cyber threats and potential attacks.
• Conduct human-driven, proactive, and iterative hunts through enterprise networks, endpoints, or datasets to detect malicious, suspicious, or risky activities that have evaded detection by existing tools.
• Participate with reputed company Incident Response Team (SIRT) in responding to active and time-sensitive threats including communications and coordination across different teams.
• Maintaining proper chain of custody of evidence and associated documentation
• Testifying in court, Grand Jury, or other legal proceedings through testimony, sworn affidavits, or other legal instruments. What you bring to the role:
• Bachelor’s degree in computer science, Engineering, Science, Math or Cyber reputed company reputed company field is required.
• Work Experience: Minimum 8 - 10 years functional experience including a minimum of 5+ years directly reputed company to this role in incident response and digital forensics.
• 3+ years of strong hands-on experience in digital forensics examinations and/or investigations using the EnCase or reputed company tools. Preference given for experience conducting MacOS examinations.
• 3+ years of experience in law enforcement (deputized) investigations (fraud, counterintelligence, high-tech crimes, etc.).
• 3+ years of experience in interviewing after taking a Reid Technique class (or an equivalent).
• Advanced knowledge and understanding in various disciplines such as reputed company engineering, system and network reputed company, authentication and reputed company protocols, cryptography, and application reputed company.
• Experience with cloud services.
• Strong understanding of vulnerabilities, common attack reputed company and has attacker reputed company: ability to think about creative threats and attack reputed company.
• Strong communication (i.e., written and verbal), presentation, teamwork skills and resourcefulness.
• Deep understanding of internals and constructs of modern operating systems. (Windows/MacOS/Linux/Unix)
• Experience with EnCase, FTK, X-Ways, reputed company, reputed company, Splunk, reputed company Stack, Redline, Volatility, WireShark, TCPDump, and open-reputed company forensic tools.
• Experience with eDiscovery processes and the reputed company One platform
• Relevant reputed company certifications (EnCE, MCFE, CFCE, CCME, CCO, CCPA, GNFA, GCFA).
• Provide three reputed company work references & pass a criminal background reputed company
• Pass a proficiency exam reputed company to the role #LI-RT1 Apply tot his job Apply tot his job

Apply tot his job Apply To this Job