Cyber Defense Forensic Analyst

Lake County, IL, US
Sep 26, 2018
Required Education
Bachelors Degree
Position Type
Full time

Cyber Defense Forensic Analyst

In this role you will be collaborating with customers including Legal, Office of Ethics and Compliance, Human Resources, Employee Relations, eDiscovery, and Cyber Security team on behalf of Information Security to provide forensic and investigative expertise. As a subject matter expert you will conduct live and dead box digital forensics for investigations involved ICS, Cloud resources, Data bases, email and mobile devices. The successful candidate will possess forensic expertise, knowledge of EDRM, and a strong understanding of computer networking and information security concepts.

Responsibilities include:

• Conducting forensic examinations of digital and other multimedia evidence through the process of identification, collection, analysis,

• and production of digital evidence.

• Ensuring data is collected and preserved with best practices and in alignment with AbbVie eDiscovery requirements.

• Guiding attorneys and investigators on how to best use litigation support methods and technologies.

• Analyzing systems, including system memory, to assist with cyber security incidents and investigations to determine root cause.

• Collecting and analyzing relevant logs in support of investigations.

• Performing ongoing research and development with the latest digital forensic trends and tools.

• Managing and maintaining the forensics tools leveraged for investigations.

• Troubleshooting, researching, and resolving technical issues/limitations independently.

• Communicating forensic findings (written reports and verbal overviews) to both business and technology audiences.

• Assisting the Cyber Security Incident Response Team during critical incidents.

Required Technical Skills:

• Experience with wide range of forensic tools (FTK, Encase, etc).

• Experience with memory analysis tools (Volitility, ResponderPro, etc).

• Experience with logging platforms that allow for quickly searching, analyzing, and pivoting data.

• Experience with Cloud Platform forensics

• Familiarity with data loss prevention technologies.

Desired Skills:

• Ability to analyze and understand technical information.

• Ability to author clear and concise reports.

• Ability to successfully interact with non-technical customers.

• Strong familiarity with forensics and eDiscovery concepts and processes.

• Strong familiarity with data loss and data protection concepts and processes.

• Strong familiarity with cyber security incident response concepts and processes.

• Experienced in a wide variety of technical solutions focused on forensics and cyber security.

Education and Experience:

• Minimum 4 years of experience in an information security discipline required.

• Minimum 1 years of experience in a forensics or investigation role required.

• Preferred: 4 year college degree in computer science or related field

• GCIH, GREM Security certifications and ENCE, GCFA, GNFA, GSAF Forensics certifications are a plus

Equal Opportunity Employer Minorities/Women/Veterans/Disabled