Role: Lead Analyst, Information Security (Forensics)
Company: to be released via phone call
Location: Ballantyne, NC (South of Charlotte, NC) - onsite 4-5x per week
Salary: $150,000- $155,000 + 10-15% bonus
Start Date: February or ASAP
Interview Process: 2-3 rounds
1st Round: Panel with the Tech leads/ Manager - Technical/ Personality
2nd Round: Interview with the CISO/CTO (potentially also the CIO if able to join)
3rd Round: Interview with CIO (ONLY IF CANNOT JOIN ON 2ND ROUND)
Job Description:
Insight Global is seeking a Lead Analyst for Information Security for one of our logistics clients. As a Lead Analyst, Information Security (Forensics), you'll serve as the lead of the forensic investigation functions for the information security team. You'll be responsible for managing the forensic lab, managing evidence collection, handling, analysis and reporting, along with assisting with Incident Response efforts when needed. This is a direct hire role, sitting 4x days onsite in Ballantyne, NC.
What your day-to-day will look like:
Primarily work in the DFIR lab in-office in Charlotte, managing evidence intake and analysis in alignment with forensic lab procedures.
Lead digital evidence investigations for internal stakeholders, focused mainly on internal investigations for HR and Legal.
Conduct forensic analysis of end-user devices (Windows and Mac) and mobile devices (iPhones and Androids) based on the goals defined during scoping.
Prepare forensic investigation reports that combine technical writing expertise with clear language for non-technical readers.
Serve as part of the CIRT (Cyber Incident Response Team), working with other members of the core incident response team and stakeholders throughout the incident response lifecycle
Requirements:
Bachelor's degree or equivalent related work or military experience
6+ years of related digital forensic analysis experience
Minimum 4 years of related incident response or cyber threat hunting / intelligence experience
Experience working with digital forensic tools, both physical (imaging hard drives and cellphones) and software (digital investigation platforms)
Experience managing a digital forensic lab (Management of the physical room of the hardware and software of the room, mange the tools, the hardware, troubleshooting the hardware/ general IT understanding )
Demonstrated experience with data analysis, documentation, and reporting
Nice to Have:
Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent work experience
GCIH, GCFA, GNFA, GREM, GHTI or other industry-relevant certification(s)
Familiarity with Cloud structure and security monitoring capabilities for GCP, AWS, Azure and O365
Advanced incident response skills to include host-based forensics, memory forensics, network forensics, packet capture analysis, and static/ dynamic malware analysis