HRTMS Job Description Management
| Cyber Forensics Investigator Ld J o b D e s c r i p t i o n | | |
Job Profile Title: | Cyber Forensics Investigator Ld | Job Code: | 12215 | Profile Title: | 12215 Cyber Forensics Investigator Ld | Grade / Band: | IC5 | FLSA Status: | Exempt | The Lead Cyber Forensics Investigator serves as the company's principal cyber forensics investigator working collaboratively with Legal, Corporate Security Investigators, IT Security, Internal Investigations, Fraud Control, and other stakeholders as needed to investigate and collect evidence in cases requiring specialized cyber expertise. | | | | | |
Principal Duties & Responsibilities | Cyber Forensics Investigation: | Lead and conduct comprehensive digital investigations into cyber incidents, including data breaches, malware infections, network intrusions, and insider threats. | Lead investigations into insider threats, including unauthorized access, data exfiltration, and sabotage, utilizing digital forensic techniques and behavioral analysis. | Conduct intelligence gathering and prepare reports of forensic findings for employee or customer fraud investigations for HR, Legal, Fraud, and other relevant departments. | Utilize advanced forensic tools and techniques to collect, preserve, analyze, and present digital evidence in support of investigations and legal requests. | Perform forensic analysis on various digital devices and platforms, including computers, servers, mobile devices, and cloud environments. | Document findings, write detailed forensic reports, and present findings to internal stakeholders and external clients as necessary. | Implement monitoring and detection mechanisms to proactively identify and mitigate insider threats within the organization, including maintaining the Company’s data loss prevention program. | Incident Response: | Serve as a key member of the incident response team, providing expertise and leadership during cybersecurity incidents. | Develop and maintain incident response plans, procedures, and playbooks to ensure effective response to cyber threats. | Coordinate with cross-functional teams to contain and remediate incidents in a timely manner, minimizing impact on business operations. | Conduct post-incident reviews and analysis to identify lessons learned and improve incident response processes. | Team Leadership: | Mentor and coach junior members of the cyber forensics and incident response team, fostering a culture of continuous learning and professional development. | Provide guidance and support to team members during complex investigations and high-pressure incident response scenarios. | Collaborate with other teams within the organization to enhance overall cybersecurity posture and readiness. |
Required for All Jobs | Performs other job-related duties as requested | Proof of eligibility to work in the United States |
Education | Education Level | Education Details | Required/
Preferred | Bachelor's Degree | Information Technology, Business Administration, or related field | Required | | | | | |
Work Experience | Experience | Experience Details | Required/
Preferred | 8+ Years of Prior Relevant Experience | Documented cyber investigative work experience | Required | | | | | |
Additional Requirements | Details | Required/
Preferred | Previous professional experience as a witness in court proceedings | Preferred | Experience with cyber forensic tools for the collection, imaging, and analysis of hard drive and other digital storage media with related professional certifications | Preferred | Experience with mobile device forensics with related professional certifications | Preferred | Previous experience working in industry leading private sector organization | Preferred | | | |
Knowledge, Skills and Abilities | KSAs | Experience in collecting and evaluating forensic evidence and conducting related interviews and preparing formalized reports | Advanced knowledge in cyber investigations and related forensic examination, as demonstrated by successful completion of Global Information Assurance Certification Forensic Analyst (GCFA) certifications or equivalent |
Physical Requirements | A thorough completion of this section is needed for compliance with legal standards such as the Americans with Disabilities Act. The physical requirements described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. | Physical Requirement | N/A | Rarely | Occasionally | Frequently | Constantly | Weight/
w.p.m. | Balancing | | | X | | | | Bending | | | X | | | | Carrying 10 pounds | | | X | | | | Clear speech - simple | | | | X | | | Clear speech - complex | | | | X | | | Climbing | X | | | | | | Distant vision | | | | X | | | Driving | X | | | | | | Flexibility - upper body | | | X | | | | Flexibility - lower body | | | X | | | | Hearing/Listening | | | | X | | | Kneeling | | X | | | | | Lifting 10 pounds | | X | | | | | Near vision | | | | X | | | Normal vision | | | | X | | | Pushing/Pulling | | | X | | | | Reaching | | | X | | | | Sitting | | | | X | | | Standing | | | X | | | | Typing | | | | X | | | Walking | | | | X | | | | | | | | | | | | | | | |
Work Environment | While performing the duties of this job, the associate is required to work within the selected work environments. | Work Environment | N/A | Rarely | Occasionally | Frequently | Constantly | Communication - verbal | | | | X | | Communication - written | | | | X | | Confined area | | | | X | | Contacts - works alone | | | | X | | Contacts - works around others | | | | X | | Contacts - works with others | | | | X | | Exposure to dust / dirt | | | | X | | Exposure to fumes / odors | | | | X | | Extreme cold | | | | X | | Extreme heat | | | | X | | Fast pace | | | | X | | Hazardous conditions - chemicals | | | | X | | Hazardous conditions - high structures | | | | X | | Hazardous conditions - high voltage | | | | X | | Indoors | | | | X | | Noise levels - low to moderate | | | | X | | Noise levels - high | | | | X | | Office conditions | | | | X | | Outdoors | | | | X | | Restricted area | | | | X | | Shifts | | | | X | | Smoke | | | | X | | Travel | | | | X | | Wet/Humid | | | | X | | | | | | | | | | | | |
Mental Requirements | While performing the duties of this job, the associate is required to work within the selected mental requirements. | Mental Requirement | N/A | Rarely | Occasionally | Frequently | Constantly | Analytical | | | | X | | Clerical | | | | X | | Comprehension | | | | X | | Crisis incidents | | | | X | | Customer service | | | | X | | Decision making | | | | X | | High pressure | | | | X | | Judgment | | | | X | | Long hours | | | | X | | Math skills - advance | | | | X | | Math skills - basic | | | | X | | Organization | | | | X | | Reading - simple | | | | X | | Reading - complex | | | | X | | Repetition | | | | X | | Tight deadlines | | | | X | | Writing - simple | | | | X | | Writing - complex | | | | X | | | | | | | | | | | | |
|