Remote eDiscovery Forensic Consultant

Exciting Remote eDiscovery Digital Forensic, 12 months, contract opportunity.

Requirements

• 5 plus years of experience in cyber forensic
• Engagements may include the following services:
  • Electronic break-in cause determination
  • Electronic break-in source determination
  • Laptop forensics
  • Desktop forensics
  • Server forensics
  • Disk imaging
  • Malware analysis
  • Keyword searches
  • Network activity monitoring
• Analyze computer network security settings, server, system, router, firewall, intrusion detection system (IDS) and intrusion prevention system (IPS) logs and packet capture data.
• Transfer of data using FTP to third parties including validation, reporting and tracking
• Leveraging the necessary IT, Active Directory, and mobile management systems to gain access to laptop and mobile phone assets for purposes of imaging
• Producing monthly incident reports
• Experience with forensic collections tools such as Guidance Software (EnCase) and/or FTK (Forensic Tookit) and Cellebrite
• Identify key data points regarding information security incidents, such as root-cause analysis, possible attack methods and techniques, malware infection and persistence methods, etc.
• Must understand the life cycle of an Incident and tools used to determine root cause during an incident.
• Perform network, disk, system files and memory forensic analysis.
• Custom tool design to assist in analysis and investigation. (Related experience in programming, database, system administration, etc.).
• Perform custom analysis on (centralized) security event information to analyze incidents.
• Collaborate with Engineering on the development of detection signatures and correlation use cases when appropriate.