Information Security Analyst

Apolis

Santa Ana, CA

JOB DETAILS
SALARY
$35–$40 Per Hour
SKILLS
Analysis Skills, Antivirus, Automation, C++ Programming Language, Chain of Custody, Cloud Computing, Commercial Off-the-Shelf (COTS), Computer Forensics, Computer Forensics Software, Computer Security, Digital Media, EnCase, Firewalls, Forensic Science, GCFA - GIAC Certified Forensic Analyst, Government Off-the Shelf (GOTS), Imaging Application, Incident Response, Information/Data Security (InfoSec), Internet Security, Intrusion Detection Systems, Intrusion Prevention Systems, JavaScript, Malware, Malware Analysis, Memory Hardware, Network Security, Programming Languages, Python Programming/Scripting Language, Reporting Skills, Requirements Validation/Verification, Reverse Engineering, Security Analysis, Security Attacks, Security Information and Event Management (SIEM), Standard Operating Procedures (SOP), Technical Drawing, Technical Writing
LOCATION
Santa Ana, CA
POSTED
1 day ago
Position: Information Security Analyst / Digital Forensics and Incident Response Analyst
Location: Santa Ana, CA
Contract duration: 6 month C2H

W2
Bachelors degree in related field and 2 years experience is preferred. Experience can be substituted in lieu of education.

Required Skills (must have)
  • Host, Cloud, Identity, and Network Forensics
  • Digital Forensics tools
  • SOC experience / following SOC SOPs

Preferred Skills / Nice to Have
  • SIEM (Sentinel preferred)
  • Incident Response
  • Malware Analysis
  • Packet Capture / Memory Analysis
  • Chain of Custody / Evidence Collection
  • Python, C++, or JavaScript
  • IDS/IPS, Firewalls, Anti-Malware
  • Technical Report Writing

Important note: Shift Rotation is to be expected based on operational needs, remaining on the same shift is not guaranteed. Reasonable notice time will be provided prior to any shift changes.

Certifications: Magnet Certified Forensics Examiner (MCFE), Encase Certified Examiner (EnCE), Digital Forensics Essentials (DFE), GIAC Certified Forensics Analyst (GCFA), or similar industry related certification(s).

RESPONSIBILITIES:
• Act as the primary liason for forensics analysis tasks such as analysis of digital media devices to identify, reverse engineer and de-obfuscate content related to a security incident.
•Upkeep and maintain the Digital Forensics Program for the SOC, including routine process enhancements and upskilling the team on drafted technical reports.
• Support SOC with general SOC Operational Duties such as security incidents for networks and systems.
• Augment cyber threat intelligence development and reporting generated from forensics investigations.
• Support routine identification, development and implementation of automation tasks surronding the SOC Forensics Program.
• Research, evaluate, and recommend new security tools, techniques, and technologies and introduces them to the enterprise in alignment with IT security strategy.
• Utilizes COTS/GOTS and custom tools and processes/procedures to scan, identify, contain, mitigate and remediate vulnerabilities, and intrusions.
• Performs analyses to validate established security requirements and to recommend additional security requirements and safeguards.
• Occasionally provide briefings to senior staff on forensics investigation results.

PRE SCREENING QUESTIONS:
Prescreening questions for Digital Forensics and Incident Response Analyst
1. Are you currently pursuing any digital forensics education or certifcations? Which ones and when are you expected to complete?
2. Do you have experience with evidence Acquisition for Chain of Custody process.
3. Do you have demonstrated Host, Cloud, Identity, Network forensics experience. Please list any experiences you have and which ones you are most comfortable/familiar with.
4. Do you have demonstrated packet capture, volatile memory, suspicious script analysis and forensics experience. Please list the types you have, and which ones you are most comfortable/familiar with.
5. Do you have Physical Device Imaging software familiarty. Please name examples.

REQUIRED SKILLS:
o Programming languages such as Python, C++, JavaScript
o Evidence Acquisition for Chain of Custody process.
o Demonstrated Host, Cloud, Identity, Network forensics experience.
o Demonstrated packet capture, volatile memory, suspicious script analysis and forensics experience.
o Physical Device Imaging software familiarty.
o Digital Forensics Software familiarity.
o IDS/IPS, Firewalls, and Anti-Virus/Anti-Malware technologies
o Incident Response
• Experience in analyzing security alerts via MS Sentinel Security Information and Event Management (SIEM) (experience with other SIEM tools would be acceptable).
• Malware Analysis Technical Report writing.
• Adherence to Standard Operating Procedures for the SOC.

About the Company

A

Apolis

Since 1996, RJT has provided successful SAP, Oracle, and IT consulting solutions and staffing services to clients around the world. The new Apolis brings you the same personalized service fortified with a greater array of IT solutions, global expertise, and cost-management strategies.

We are a global IT consultancy that seamlessly integrates experts and leading-edge solutions into your organization so you can focus on what really matters.

COMPANY SIZE
500 to 999 employees
INDUSTRY
Computer/IT Services
EMPLOYEE BENEFITS
Paid Sick Days, Employee Referral Program, Employee Events, Retirement / Pension Plans
WEBSITE
https://www.apolisrises.com/