Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Jobs InfoSec Jobs

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Sr. Cybersecurity Forensic Investigator
Company Aventiv
Location Carrollton, Tx
Preferred GIAC Certifications GREM, GCFA, GCFE, GNFA, GASF, and GSEC
Travel 10%
Salary Not provided
URL https://careers-aventiv.icims.com/jobs/3184/job
Contact Name JM
Contact Email jm/at/phyxt.net
Expires 2021-07-12

Job Description

Welcome to Aventiv Technologies. Please watch this brief video to find out if this is the place you want to be!

https://vimeo.com/391578629/5ba31cc5e9

## Job Purpose
Serve as a tactical arm of the team, perform hunting for advanced threats, conducting live incident response, computer forensic analysis, data recovery, and other IT investigative work. Due to the inherent volatility of investigative response work, performs the various responsibilities assigned to their role while successfully managing a variable case load.

## Responsibilities

### Essential Duties
* Investigate data breaches and security incidents where alarms have already been raised. Recover any pertinent data from electronic storage devices for further examination
* Work investigative cases referred from internal and external sources utilizing appropriate technology and tools
* Provide quick, accurate and formulated case decisions and/or conclusions that will reduce losses, protect our customers and safeguard the integrity of our products and reputation
* Gather, research and analyze facts relevant to an investigative case and draw conclusions on said facts
* Ensure proper adherence to investigative standards, case aging protocols and report writing
* Interact with law enforcement and other outside entities
* Brief others on an ongoing investigations/investigative projects
* Generate, compile and present professional and comprehensive reports of forensic findings based on examinations
* Proactively and iteratively detect, isolate and neutralize advanced threats that evade automated security solutions
* Coordinate threat hunting activities across the network leveraging intelligence from multiple internal and external sources, as well as cutting- edge security technologies
* Perform other duties as assigned

### Knowledge, Skills, and Abilities
* Up to date knowledge of cybersecurity hardware, software and solutions
* Up to date understanding of rules and regulations pertaining to cybersecurity and data protection (i.e. NIST CSF, GDPR, CCPA, etc.)
* Expert knowledge and experience performing full forensic investigations on Microsoft Windows, UNIX/Linux, macOS, Android, and iOS platforms
* Practical experience using computer operating systems such as MS Windows, UNIX/Linux
* An understanding of human behavior and motivations together with IT Skills
* An analytical mind with the ability to make sense of many different data inputs
* Ability to objectively assess any findings and prioritize evidence by importance
* Ability to organize multiple concurrent investigations
* Motivated to drive reviews under limited or no supervision
* Exceptional written and verbal communication skills as you will be reporting on your forensic findings
* Expert knowledge and experience with Anti-Virus/Anti-malware products
* Understanding of information security; network architecture, general database concepts, document management, hardware and software troubleshooting, email systems (i.e. Microsoft Exchange, Office365, GSuite), Microsoft Office applications, and computer forensic tools such as EnCase and FTK
* Ability to identify and recommend mitigations for vulnerabilities and exploits

## Qualifications

### Minimum Qualifications
* Bachelor’s degree in a related field or equivalent combination experience and education
* 6+ years in forensics role
* Information Security certification required. Security certifications may include, but not be limited to GREM, GCFA, GCFE, GNFA, GASF, and GSEC

### Preferred Qualifications
* 2+ years of experience with Linux, Windows, Active Directory security configuration and design, monitoring/alerting, intrusion detection, encryption, vulnerability management, database security, and wireless network security
* 2+ years of experience with Information Security principals and activities
* System administration experience
* 2+ years of experience using computer operating systems such as MS Windows, UNIX/Linux, macOS, Android and iOS
* 2+ years of experience reading and understanding network, system, and application forensic logs
* 2+ years of experience with evidentiary procedures, volatile criminal/civil situations, fraud analysis and an IR fundamental are ideal
* Experience mentoring and training co-workers in the knowledge, skills and abilities listed above

## Aventiv Privacy Policy
www.aventiv.com/privacy

## Physical Requirements
* While performing the duties of this job, the employee is regularly required to: stand, sit, talk, hear, and use hands and fingers to operate a computer, telephone, and a variety of office equipment.
* Occasionally may need to reach, stoop, or kneel.

## Equal Employment Policy
The Company’s policy is to provide equal employment opportunity to all individuals in all of its employment programs and decisions. Securus Technologies, Inc., and its Subsidiaries will not discriminate against any associate or qualified job applicant with respect to any terms, privileges, or conditions of employment because of that person’s race, color, religion, sex, national origin, age, disability, veteran status, genetic information, sexual orientation, gender identity, or any other characteristic or status protected under local, state or federal law, ordinance or regulation.