Data Forensics Analyst (new center in Bucharest)

Employer: Brainspotting
Domain:
  • IT Software
  • Job type: full-time
    Job level: 1 - 5 years of experience
    Location:
  • BUCHAREST
  • Updated at: 05.06.2020
    Short company description

    We are the leading technology recruitment and selection consultancy in Romania, working on highly specialized technologies for permanent and interim positions. Since our inception in 2001 as the first specialized IT recruitment agency in Romania we supported over 400 national and global clients in acquiring strategic IT talent for their business.

    We are deeply passionate about technology and highly responsible about our work. We understand the pressure of the business and the fact that you need fast and quality results. Therefore we always go for the extra mile to deliver the best IT&C talent for your business, no matter how challenging the project may seem.

    Requirements

    Our client represents a life insurance company helping their clients to have a financial wellbeing.

    In this role, you will conduct in-depth forensics analysis to identify, preserve, recover, and present facts pertaining to the digital information captured.

    Requirements:

    Demonstrate a strong understanding of file system and internal system artifacts a variety of operating systems (e.g., Windows, Linux, macOS).
    General working knowledge of networking protocols, security technologies, and application services.
    General working knowledge of cloud environments, technologies, and services
    Ability to interpret device and application logs from a variety of sources (e.g. Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures, etc.) to identify anomalies or evidence of compromise.
    Knowledge of OS internals and encryption systems
    Foundational knowledge in Digital Forensics
    Possess the ability to conduct work in a timely and efficient manner
    Excellent problem solving/analytical thinking skills
    Demonstrable verbal and written communication skills
    Experience collaborating as part of a larger security team

    PREFERRED QUALIFICATIONS:
    Experience with EnCase, FTK, BlackBag, Helix, and Wireshark
    Experience with EDR tools
    Experience with Splunk Enterprise Security
    CFCE, EnCE, GCFE, GCFA, GCIH, GREM, CFCE certifications are a plus.
    BA or BS degree in Digital Forensics, Cyber Security, Information Systems, International Studies, Political Science, or Criminal Justice with a focus in Cyber Security.

    Responsibilities

    Recover data from computer hard drives and other data storage devices that have been deleted, damaged or otherwise manipulated.
    Use forensic tools to image target devices and investigative techniques to find and analyze specific electronic data for the purpose of investigation support or long-term archiving.
    Document investigations steps and maintain a focus on chain of custody.
    Provide support to Security Operations Center and Incident Response analysts, aiding in event and incident investigation.
    Present clear and concise findings via written and oral reports to key stakeholders.
    Partner with internal Ethical Hack team to create, scope, and direct ethical hack exercises.
    Responsible for preserving electronically stored information from a variety of platforms and sources; including laptops, desktops, servers, cloud services, mobile devices, and storage media in a manner that follows industry best practices and maintains forensic integrity.
    Lead investigations by assisting customers to analyze security alerts and coordinating response activities
    Serve as POC for triaging and quarter-backing unique customer security incidents
    Gather event intelligence and indicators of compromise to assess incident severity, and recommend appropriate cross-functional stakeholders for assistance