Job Description

Overview

Cyber Triage and Forensic Senior Analyst at EY. The role involves security incident response, digital forensic analysis, malware analysis, identification of indicators of compromise, remediation coordination, and development of documentation to support incident response processes.

Your Key Responsibilities

• Investigate, coordinate, bring to resolution, and report on security incidents as they are identified
• Forensically analyze end user systems and servers with possible indicators of compromise
• Analyze artifacts collected during security incidents or forensic analyses
• Identify security incidents through hunting within SIEM, EDR, and other tools
• Interface with server owners, system custodians, and IT contacts to pursue incident response activities, including access, artifact collection, containment, and remediation
• Provide consultation and assessment on perceived security threats
• Maintain, manage, improve and update incident response process and protocol documentation
• Regularly provide reporting and metrics on case work
• Resolve security incidents by identifying root cause and solutions
• Analyze findings in investigative matters and develop fact-based reports
• Be on-call to deliver global incident response

Skills And Attributes For Success

• Resolve security incidents by identifying root causes and solutions
• Analyze findings in investigative matters and develop fact-based reports
• Integrity and sound judgment in a professional environment
• Ability to balance work/personal priorities

To qualify for the role you must have

• Bachelors or Masters Degree in Computer Science, Information Systems, Engineering or a related field
• 7+ years of experience in incident response, computer forensics analysis and/or malware reverse engineering
• Understanding of security threats, vulnerabilities, and incident response
• Understanding of electronic investigation, forensic tools and methodologies, including log correlation and analysis, forensic handling of electronic data, malware identification and analysis
• Familiarity with legalities surrounding electronic discovery and analysis
• Experience with EDR and SIEM technologies (e.g. Splunk)
• Deep understanding of Windows and Unix/Linux operating systems

Ideally, youll also have

• Related professional certifications such as GCFE, GCFA or GREM
• Background in security incident response in cloud environments (e.g. Azure)
• Programming skills in PowerShell, Python and/or C/C++
• Understanding of best security practices for network architecture and server configuration

What We Look For

• Demonstrated integrity in a professional environment
• Ability to work independently
• Global mindset for working with diverse cultures
• Knowledge of standard security incident response processes, procedures and lifecycle
• Positive attitude and strong teamwork
• Excellent social, communication, and writing skills
• Good presentation skills
• Excellent investigative, analytical, and problem-solving skills

What We Offer You

The compensation ranges below are provided to comply with U.S. pay transparency laws; other geographies follow local guidelines. EY focuses on developing future-focused skills in a flexible, diverse and inclusive culture of globally connected teams.

• Base salary range for this job in the U.S. is $128,100 to $239,600; NYC Metro, WA, and CA ranges are $153,800 to $272,300. Total Rewards include medical/dental coverage, pension and 401(k), and various paid time off options.
• Hybrid model: most client-serving roles are expected to work in person 40-60% of the time
• Flexible vacation policy and designated EY holidays, personal/family care, and other leaves

Are you ready to shape your future with confidence? Apply today. EY accepts applications on an ongoing basis.

EY focuses on high ethical standards and equal employment opportunities. For California, additional information is available. EY is committed to providing reasonable accommodations for qualified individuals with disabilities, including veterans with disabilities.

Additional

Seniority level: Mid-Senior level

Employment type: Full-time

Job function: Information Technology and other related areas

Industries: Professional Services

Job Tags

Similar Jobs