Essential Job Functions

• Leads and performs digital forensics investigations across the enterprise including identification, preservation, analysis, documentation, and presentation.
• Identification, design, and recommendations for digital forensic tools over the enterprise.
• Identification of and defeating anti-forensic techniques.
• Performs Operating Systems (OS) forensics across multiple Operating Systems across multiple platforms.
• Performs digital investigations on e-mail servers and systems.
• Performs digital investigations across multiple cloud and traditional environments.
• Investigations may include computer, network, mobile device, and memory forensic investigations.
• Makes recommendations for preventive measures.
• Leads investigations with internal and external security service providers and clients.
• Investigations may include live box and dead box analysis.
• Makes recommendations for preventive measures as necessary.
• Assesses assigned system to determine system security status. Designs and recommends security policies and procedures to implement; ensures compliance to policies and procedures.
• Evaluates highly complex security systems according to industry best practices to safeguard internal information systems and databases.
• Defines and reviews security requirements and subsequently reviews complex systems to determine if they have been designed and established to comply with established standards.
• Leads investigations of security violations and breaches and recommends solutions; prepares reports on intrusions as necessary and provides analysis summary to management.
• Responds to more complex queries and request for computer security information and reports from both internal and external customers.
• Provides technical consultation on highly complex tasks; may assist and/or provide limited direction to lower level technical personnel.
• Provides product recommendations of security packages; Reviews vendor products and makes recommendations as appropriate. Conducts cost analyses to determine feasibility of new products.

Basic Qualifications

• Bachelor’s degree or equivalent combination of education and experience
• Bachelor’s degree in cyber security, computer science, management information systems, or related field preferred
• CISSP, EnCe, GCFA,GCFE, CFCE, or CHFI certification(s) preferred
• Nine or more years of experience in computer science, management information systems, or data security experience
• Experience in the Health Care industry preferred
• Experience working with digital investigations
• Experience working with information security practices, networks, software, and hardware
• Experience working with computer programming
• Experience working with operating systems
• Experience working with computer desktop packages such as Microsoft Word, Excel, etc.
• Experience working with security architecture

Other Qualifications

• Strong analytical and problem solving skills for resolving security issues
• Good organization skills to balance work and lead projects
• Basic leadership skills to effectively mentor and lead junior level personnel
• Good interpersonal skills to interact with customers and team members
• Strong communication skills to interact with team members and support personnel
• Ability to work in a team environment

Work Environment

• Office environment
• May require shift work
• May require weekend work