Data Forensics Analyst (new center in Bucharest)
We are the leading technology recruitment and selection consultancy in Romania, working on highly specialized technologies for permanent and interim positions. Since our inception in 2001 as the first specialized IT recruitment agency in Romania we supported over 400 national and global clients in acquiring strategic IT talent for their business.
We are deeply passionate about technology and highly responsible about our work. We understand the pressure of the business and the fact that you need fast and quality results. Therefore we always go for the extra mile to deliver the best IT&C talent for your business, no matter how challenging the project may seem.
Our client represents a life insurance company helping their clients to have a financial wellbeing.
In this role, you will conduct in-depth forensics analysis to identify, preserve, recover, and present facts pertaining to the digital information captured.
Demonstrate a strong understanding of file system and internal system artifacts a variety of operating systems (e.g., Windows, Linux, macOS).
General working knowledge of networking protocols, security technologies, and application services.
General working knowledge of cloud environments, technologies, and services
Ability to interpret device and application logs from a variety of sources (e.g. Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures, etc.) to identify anomalies or evidence of compromise.
Knowledge of OS internals and encryption systems
Foundational knowledge in Digital Forensics
Possess the ability to conduct work in a timely and efficient manner
Excellent problem solving/analytical thinking skills
Demonstrable verbal and written communication skills
Experience collaborating as part of a larger security team
Experience with EnCase, FTK, BlackBag, Helix, and Wireshark
Experience with EDR tools
Experience with Splunk Enterprise Security
CFCE, EnCE, GCFE, GCFA, GCIH, GREM, CFCE certifications are a plus.
BA or BS degree in Digital Forensics, Cyber Security, Information Systems, International Studies, Political Science, or Criminal Justice with a focus in Cyber Security.
Recover data from computer hard drives and other data storage devices that have been deleted, damaged or otherwise manipulated.
Use forensic tools to image target devices and investigative techniques to find and analyze specific electronic data for the purpose of investigation support or long-term archiving.
Document investigations steps and maintain a focus on chain of custody.
Provide support to Security Operations Center and Incident Response analysts, aiding in event and incident investigation.
Present clear and concise findings via written and oral reports to key stakeholders.
Partner with internal Ethical Hack team to create, scope, and direct ethical hack exercises.
Responsible for preserving electronically stored information from a variety of platforms and sources; including laptops, desktops, servers, cloud services, mobile devices, and storage media in a manner that follows industry best practices and maintains forensic integrity.
Lead investigations by assisting customers to analyze security alerts and coordinating response activities
Serve as POC for triaging and quarter-backing unique customer security incidents
Gather event intelligence and indicators of compromise to assess incident severity, and recommend appropriate cross-functional stakeholders for assistance