Manager - Forensics - MNC Professional Services - CA

Experience: 4-5 Years

Description:

- Conduct forensic analysis on systems to identify evidence of compromise and determine the root cause of security breaches.

- Collect digital artifacts from cloud, on-premises, and employee systems for forensic analysis.

- Investigate security incidents, perform detailed analysis of security events, and document findings.

- Perform forensic analysis on endpoints and networks, including malware and log analysis.

- Lead incident response efforts, including containment, eradication, and recovery activities.

- Develop and maintain incident response plans, playbooks, and standard operating procedures.

- Use threat intelligence sources, security logs, and other tools to identify anomalous activities and potential security incidents.

- Work with IT, network operations, legal, and external partners to ensure a comprehensive response to security incidents.

- Stay updated on the latest security threats, vulnerabilities, and attack techniques, and recommend security improvements.

- Conduct post-incident analysis and create detailed reports documenting the incident response process and lessons learned.

- Use advanced network traffic analysis techniques to identify compromised systems and mitigate attacks.

- Communicate and collaborate effectively with legal counsel, trust & governance, and executive leadership.

- Implement technical recommendations to enhance incident response and digital forensics capabilities.

- Provide feedback and technical advice to junior team members to increase team maturity and advancement speed.

Qualification

- Bachelor's degree in computer science, digital forensics, cybersecurity, or a related field (or equivalent work experience).

- Experience: 5 plus years of experience in Digital forensics, incident response, and cybersecurity operations.

- Experience with tools such as EnCase, FTK, Magnet Axiom, Oxygen, UFED, intella .

- Proficiency in using security tools like IDS/IPS, EDR, and forensic analysis tools.

- Knowledge of security frameworks such as MITRE ATT&CK, cyber kill chain and industry-standard incident response methodologies.

- Familiarity with cloud platforms, network security, and emerging technologies.

- Excellent analytical and problem-solving skills with the ability to analyze large datasets and identify patterns or indicators of compromise.