Jobs · Information Technology · Texas

Senior Associate, Information Security - Forensics

Publicis Re:Sources · Irving, TX · 6 days ago
HybridInformation TechnologyFull-time

Overview

The Senior Associate, Information Security - Forensics is part of a global team and is responsible for incident response of cyber security incidents that are associated with our businesses, clients, and vendors. They are technically skilled and ensure incident containment, remediation, and closure. This individual works closely with the legal, data privacy, business, and client teams and interacts with senior executives.

Responsibilities

  • Incident Commander to lead investigation and response of cyber security incidents.
  • Analyze compromised/potentially compromised systems utilizing forensics tools.
  • Capture and analyze file system artifacts, process history, application artifacts, memory collection and analysis for physical and cloud systems (Windows, Mac, Linux).
  • Coordinate evidence/data gathering and document security incident reports.
  • Manage, review, and present written and oral reports in a pertinent, concise, and accurate manner for distribution to management.
  • Perform complex forensic investigations into system breaches, data leaks, and system weaknesses.
  • Provide technical expertise to staff on security incident monitoring, triage, response, threat & vulnerability management, and security analysis.
  • Develop and manage incident response programs with focus on efficiency through AI development.
  • Lead Incident Response calls with different stakeholders and produce detailed incident reports.
  • Identify and mitigate social engineering, phishing, and related fraud schemes.
  • Develop and maintain a strong understanding of security concepts and expertise in network and web application security issues.
  • Develop and maintain incident response plans and procedures.

Qualifications

  • EDR Experience - CrowdStrike and/or SentinelOne with experience investigating and analyzing malware and other malicious activity.
  • Experience with forensics tools such as FTK, EnCase, Autopsy to collect and analyze file system artifacts, process history, application artifacts, memory collection and analysis for physical and cloud systems (Windows, Mac, Linux).
  • 4 or more years of experience in an analytical role of either forensics analyst (Linux, Windows, or MacOS), threat analyst, incident response, SOC analyst, or security engineer/consultant.
  • Experience with cloud environments such as: Azure, AWS, GCP – knowing how to collect and analyze logs from Guard Duty/Defender and CloudTrail, etc.
  • Familiarity with the MITRE ATT&CK or related frameworks.
  • Experience developing and managing incident response programs with focus on efficiency through AI development.
  • Strong communication skills with confidence leading Incident Response calls with different stakeholders; followed by producing detailed incident reports.
  • Proficient in social engineering, phishing, and related fraud schemes.
  • Strong general knowledge of security concepts and expertise in network and web application security issues.
  • Experience with a scripting language such as Python, Bash, PowerShell, or other scripting language in an incident handling environment.

Additional Information

All your information will be kept confidential according to EEO guidelines. This job description in no way states or implies that these are the only duties to be performed by the employee(s) currently in this position. Employee(s) will be required to follow any other job related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments. A review of this position has excluded the marginal functions of the position that are incidental to the performance of fundamental job duties. All duties and responsibilities are essential job functions and requirements and are subject to possible modification to reasonably accommodate individuals with disabilities. To perform this job successfully, the incumbent(s) will possess the skills, aptitudes, and abilities to perform each duty proficiently. Some requirements may exclude individuals who pose a direct threat or significant risk to the health or safety of themselves or others. The requirements listed in this document are the minimum levels of knowledge, skills, or abilities. This document does not create an employment contract, implied or otherwise, other than an ""at-will"" relations. Salary Range: $100-120K/yr

Similar jobs