Digital Forensic Incident Response Analyst

This position requires a strong technical security professional, who will be responsible for conducting highly technical and confidential investigations. (e.g. data loss, advanced persistent threats, malware analysis, etc..)

The Role:

The Digital Forensics Investigator will be responsible for managing & collection of electronically stored information and digital evidence, coordination of internal investigations of business misconduct and reported employee wrongdoing across business units and suppliers, detailed forensic analysis of evidence collected, and providing forensic guidance to leadership.

Essential Duties and Responsibilities

• Conduct examination of digital media (hard drives, network traffic, mobile phones, etc.).


• Capture / analyze network traffic for indications of compromise.


• Review log-based data, both in raw form and utilizing SIEM or aggregation tools.


• Employ best practices and forensically sound principals such as evidence handling and chain of custody.


• Perform live network assessments using leading packet capture and analysis software tools.


• Establish timelines and patterns of activity based on multiple data sources.


• Identify, document and prepare reports on relevant findings.


• Utilize varied forensic software such as Axiom, FTK, etc.

Required Technical and Professional Expertise

• At least 3-5 years of experience in IT Security Digital Forensics


• Memory forensics


• Network forensics


• End host forensics


• Log analysis


• Static and Dynamic malware analysis.


• At least 2 years of experience in Incident Response in a global corporate enterprise


•  

Preferred Technical and Professional Expertise

• Certified in EnCE, CFCE, CCE, DFCP, GCIA, GCIH, GREM, CSIH


• Strong understanding of networking protocols.


• Experience in fast-paced investigations.


• Familiar with Splunk SIEM tool


• Demonstrated system administration skills.


• Ability to present highly technical information to non-technical audiences


• Candidate must also have working-familiarity with forensic tools


• Ensure confidentiality of sensitive information is maintained


• Conduct research using multiple information and data sources


• Provide courtroom testimony when required

Best Regards,

Mythili KG

Lead Associate

Sensiple Inc. (f/k/a E*Pro Inc.)

+1 732 283 0499 Ext. 354

(e-mail removed)

Disclaimer: The information contained in this e-mail message and/or attachments to it may contain confidential or privileged information and intended solely for the use of the individual or entity to whom they are addressed. If you are not the intended recipient, any dissemination, use, review, distribution, printing or copying of the information contained in this e-mail message and/or attachments to it are strictly prohibited. If you have received this communication by error, please notify the sender immediately by reply e-mail and permanently delete the message and the attachments from your system. Thank you!