The point where experts and best companies meet
EY Cyber Defense Forensics Supervising - EY Global Delivery Services Argentina, Autonomous City of Buenos Aires, Buenos Aires 758118749
10.09.2024
Share
Your key responsibilities
- Investigate, coordinate, bring to resolution, and report on security incidents as they are brought up or identified
- Forensically analyze end user systems and servers found to have possible indicators of compromise
- Analysis of artifacts collected during a security incident/forensic analysis
- Identify security incidents through ‘Hunting’ operations within a SIEM and other relevant tools
- Interface and connect with server owners, system custodians, and IT contacts to pursue security incident response activities, including: obtaining access to systems, digital artifact collection, and containment and/or remediation actions
- Provide consultation and assessment on perceived security threats
- Maintain, manage, improve and update security incident process and protocol documentation
- Regularly provide reporting and metrics on case work
- Resolution of security incidents by identifying root cause and solutions
- Analyze findings in investigative matters, and develop fact based reports
- Be on-call to deliver global incident response
- Resolution of security incidents by identifying root cause and solutions
- Analyze findings in investigative matters, and develop fact-based reports
- Proven integrity and judgment within a professional environment
- Ability to appropriately balance work/personal priorities
- Bachelors or Masters Degree in Computer Science, Information Systems, Engineering or a related field
- 5+ years experience in incident response, computer forensics analysis and/or malware reverse engineering;
- Understanding of security threats, vulnerabilities, and incident response;
- Understanding of electronic investigation, forensic tools, and methodologies, including: log correlation and analysis, forensically handling electronic data, knowledge of the computer security investigative processes, malware identification and analysis;
- Be familiar with legalities surrounding electronic discovery and analysis;
- Experience with SIEM technologies (i.e. Splunk);
- Deep understanding of both Windows and Unix/Linux based operating systems;
- Hold or be willing to pursue related professional certifications such as GCFE, GCFA or GCIH
- Background in security incident response in Cloud-based environments, such as Azure
- Programming skills in PowerShell, Python and/or C/C++
- Understanding of the best security practices for network architecture and server configuration
- Demonstrated integrity in a professional environment
- Ability to work independently
- Have a global mind-set for working with different cultures and backgrounds
- Knowledgeable in business industry standard security incident response process, procedures, and life cycle
- Excellent teaming skills
- Excellent social, communication, and writing skills
- Continuous learning:You will develop the mindset and skills to navigate whatever comes next.
- Success as defined by you:We will provide the tools and flexibility, so you can make a significant impact, your way.
- Transformative leadership:We will give you the insights, coaching and confidence to be the leader the world needs.
- Diverse and inclusive culture:You will be accepted for who you are and empowered to use your voice to help others find theirs.
These jobs might be a good fit
