|Preferred GIAC Certifications||GSEC, GCFE, GCFA|
The Senior Digital Forensics Investigator is responsible for conducting company investigations involving digital evidence in support of Human Resources, Ethics & Compliance, and Enterprise Security as guided by Legal. The Senior Digital Forensics Investigator works under the guidance of Lead Digital Forensics Investigators while collaborating with stakeholders.
The Senior Digital Forensics Investigator will have a working knowledge and experience of mobile data acquisition, demonstrated experience in at least one core commercial forensics analysis platform, possess the ability to follow chain of custody processes, and understand the importance of following processes and procedures to ensure consistent and accurate outcomes. Senior Digital Forensics Investigators prepare investigation strategies with minimal over
sight and prepare reports of investigations and conduct interviews with minimal leadership review and input.
The Senior Digital Forensics Investigator has an intimate knowledge of Windows and iOS operating system artifacts and the ability to create forensically sound images in support of investigations. The Senior Digital Forensics Investigator must know how to perform basic forensics triage of media to identify artifacts of interest in support of internal investigations, and a knowledge of leading forensics software that is used to acquire, preserve, and analyze digital evidence from laptops, desktops, servers, backup tapes, mobile devices, and a variety of other media.
The Senior Digital Forensics Investigator must demonstrate the capability to source the needed information, analyze, and develop meaningful forensics assessments to enable business partners to take informed and timely actions. The Senior Digital Forensics Investigators must be skilled in both written and oral communications and must process strong analytical skills.
Assist in planning and direction, ensuring Digital Forensics program efforts align with customer's requirements.
Assist in maintaining a case management tracker and reporting out Monthly metrics
Conduct research and analysis on new and emerging technologies and the impact on our infrastructure. Engaging leads with potential solutions
Prepare digital evidence-related products such as summary reports, court report templates, in addition, other summary reports to internal staff and business units to provide feedback and analysis on current case work.
Conduct examination and analysis of forensics data in response for assistance in determining the outcome of an investigation
Bachelor's degree in Computer Science or Information Technology
In addition to required degree, six (6) years minimum of related work experience
In lieu of Bachelor's degree AND six (6) years minimum of related work experience listed above, or Associates degree and six (6) years minimum related work experience
Currently possesses GSEC, GCFE, GCFA or equivalent Digital Forensics Certifications (McFE or EnCE)
Basic understanding of the energy industry – specifically the operation of the Bulk Electric System
Additional related industry certifications
Strong understanding and application of the principles of both Cyber and Physical Security
Basic level of understanding of Linux
Hands on experience with Mobile Device exploitation software and tools
Familiarity with Insider Threat and Insider Threat principles
Sharp analytical abilities with proven technical and creative skills
Strong skills in critical thinking and investigations
Ability to produce unbiased documentation and demonstrative strong writing abilities
Ability to manage undefined scopes and put structure into large-scale ambiguity
Hybrid – Work will be performed from both remote and onsite locations after the onboarding period. However, hybrid employees should live within a reasonable commute to the designated Duke Energy facility