Senior Digital Forensics Analyst

Lake County, IL, United States
May 23, 2020
Required Education
Bachelors Degree
Position Type
Full time
About AbbVie
AbbVie (NYSE:ABBV) is a global, research-driven biopharmaceutical company committed to developing innovative advanced therapies for some of the world's most complex and critical conditions. The company's mission is to use its expertise, dedicated people and unique approach to innovation to markedly improve treatments across four primary therapeutic areas: immunology, oncology, virology and neuroscience. In more than 75 countries, AbbVie employees are working every day to advance health solutions for people around the world. For more information about AbbVie, please visit us at . Follow @abbvie on Twitter, Facebook or LinkedIn .

The Digital Forensics team tackles daily challenges related to cyber security incidents, as well as internal investigations sourced by stakeholders such as Human Resources, OEC, Legal, and Global Security. As a member of the Digital Forensics team, the Senior Digital Forensics Analyst is expected to have an exceptional attention to detail, a desire to rout out the root cause during post-mortem analysis, and the ability to deliver high quality forensic findings reports in a consistent manner.

As a member of the AbbVie Digital Forensics Team, in the role of a Senior Digital Forensics Analyst, candidate responsibilities will include:

  • Conducting forensic data acquisitions in support of confidential HR, Litigation or Internal Investigations (OEC) requests and audits
  • Explaining technical artifacts and findings to non-technical audiences
  • Performing forensic data collections from internal applications, servers, desktop systems and mobile devices in support of CSIRT investigations
  • Supporting security incident analysis and assistance with incident response, including analysis of network and endpoint content and metadata for investigations or malware detections
  • Developing and providing KPI metrics to leadership
  • Maintaining tools, including virtual environments
  • Ensuring that evidence retention policies are being followed by auditing evidence inventory and proper disposal of evidence, as required
  • Maintaining secure case and data archive inventories and case management systems
  • Creating, maintaining and updating documentation for acquisition, analysis and reporting techniques
  • Working independently on forensic analysis requests made by internal business partners (i.e. OEC, Employee Relations, Legal, InfoSec)
  • Evaluating industry standard tools and processes used for forensic acquisitions and analysis
  • Providing feedback to engineers on forensic tool use case and development
  • Creating detailed, accurate and professional analysis reports
  • Leading or contributing to key projects related to corporate digital forensics and information security initiatives
  • Keeping up to date with modern information security insider threats, attack vectors and exploits


Key Qualifications

  • Strong attention to detail, deep personal integrity, and high concern for data accuracy
  • Ability to lead engagements with internal business partners that require support from the Digital Forensics team
  • Minimum 2 years of experience in an information security discipline
  • 4 year college degree in computer science or related field is required4 year college degree in computer science or related field is required
  • Strong interpersonal skills required to establish and maintain positive relationships with our internal business partners
  • Enjoys researching Digital Forensics tools, techniques or processes and has a desire to continue learning
  • Dependable team player who works collaboratively with peers in a team-oriented, security response service environment
  • In depth experience with industry-standard Digital Forensics methodologies, including evidence handling, chain of custody procedures, and commonly used forensics toolsets
  • Proven expertise in filesystem artifact analysis covering multiple operating systems: Mac, Windows, Linux/Unix
  • Comfortable participating in DFIR tasks including live response and volatile data acquisition and analysis
  • Experience using remote acquisition/analysis tools and endpoint detection/response tools across multiple operating systems for remote evidence collection
  • Ability to work off-hours and on-call as required
  • Experience with malware analysis, including analysis of vulnerability exploitation
  • Experience writing affidavits, expert opinions, or providing expert testimony experience is a plus
  • Scripting experience (Python, PowerShell, etc.) is a plus
  • Experience with log analysis within a SIEM tool is a plus
  • Experience with cloud environments is a plus
  • Bachelor's in Digital Forensics, Computer Science, Information Systems, or related discipline plus 3+ years of digital forensics or incident response experience; or 5+ years of equivalent work experience
  • Desired Certifications: GIAC Forensic Examiner (GCFE), GIAC Forensic Analyst (GCFA), GIAC Reverse Engineering Malware (GREM), GIAC Network Forensic Analyst (GNFA), GIAC Advanced Smartphone Forensics (GASF)

Significant Work Activities
Continuous sitting for prolonged periods (more than 2 consecutive hours in an 8 hour day)
Yes, 5 % of the Time
Job Type
Job Level Code
Equal Employment Opportunity
At AbbVie, we value bringing together individuals from diverse backgrounds to develop new and innovative solutions for patients. As an equal opportunity employer we do not discriminate on the basis of race, color, religion, national origin, age, sex (including pregnancy), physical or mental disability, medical condition, genetic information gender identity or expression, sexual orientation, marital status, protected veteran status, or any other legally protected characteristic.