Job Description
Note:
The job is a remote job and is open to candidates in USA. Nationwide is a company that prioritizes innovation and customer care, and they are seeking a detail-oriented Digital Forensics Analyst to join their cybersecurity team. The role involves conducting digital forensic investigations, analyzing digital evidence, and supporting incident response activities to protect the company's members and data. Responsibilities • Lead and conduct digital forensic investigations involving data breaches, malware infections, unauthorized access, intellectual property theft and other security incidents • Collect, preserve and analyze digital evidence from endpoints, servers, cloud environments and mobile devices, ensuring proper chain of custody and adherence to legal and regulatory requirements • Perform forensic imaging and analysis of Windows, Linux, macOS, and mobile devices using industry-standard tools and methodologies • Develop and execute scripts (Python, PowerShell) to automate evidence collection, data parsing, and artifact extraction • Analyze logs, network traffic and large datasets to reconstruct timelines and identify root causes • Prepare detailed forensic reports and present findings to technical and non-technical stakeholders, including legal, HR, and management • Support the development and refinement of forensic processes and playbooks • Responds to cyber incidents using industry recognized methodology, e.g., PICERL (Preparation, Identification, Containment, Eradication, Recovery and Lessons Learned) • Creates uplift of cyber security detection and alerts for ongoing prevention of threats • Applies secure software and systems engineering practices throughout the delivery lifecycle to ensure our data and technology solutions are protected from threats and vulnerabilities • Implements automation and orchestration for the enrichment and handling of cyber security events • Supports vulnerability management via tools and processes and proactively identify vulnerabilities in the environment • Assists in the planning and execution of team activities to enrich detection and prevention controls • Participates in proactive cyber activity (purple teaming, threat hunting, red teaming, etc.) and expands awareness across all aspects of the MITRE ATT&CK framework • Identifies critical log sources and system events used for creation and tuning of cyber security detections • Maintains awareness of the cyber threat landscape to assist with the evaluation, enrichment and dissemination for action to protect Nationwide members and environment Skills • Proficiency in Python or PowerShell scripting for automation and data analysis • Experience with forensic imaging and analysis tools • Strong understanding of file systems, operating systems (Windows, Linux, and macOS) • Ability to analyze and interpret large datasets • Experience in digital evidence collection and preservation and forensic methodologies • Familiarity with incident response procedures and integration with forensic workflows • Knowledge of regulatory and compliance requirements related to data security, privacy and digital evidence • At least three years of experience in technology • Experience in working with operating systems, networking, desktop support, application development, end point security, database management or information security • Successful candidates will have experience configuring and using Windows and Linux/Unix operating systems • Action oriented and ability to make decisions and recommendations • Aptitude to build partnerships, understand business processes, and set priorities • Solid communication skills • Understanding of networking concepts and protocols • Exposure to cloud platforms (AWS, Azure, GCP) • Certifications such as GIAC GCFA, GCIH, CEH, EnCE, MCFE or similar • Strong written and verbal communication skills for reporting and presenting findings • Undergraduate studies in cyber security, management information systems, engineering, math, computer science, data analytics or comparable experience and education strongly preferred • Graduate studies in cyber security, computer science or a related field are a plus • Preferred certifications include: Certified Information Systems Security
Professional (CISSP), Cisco Certified Network Associate (CCNA), Certified Ethical Hacker (CEH), GIAC Certified Intrusion Handler (GCIH), Digital Forensics Investigation: EnCase Certified Examiner (EnCE) certification, GIAC Strategic Planning Policy and Leadership (GSTRT), GIAC Security Expert (GSE), Certified Cloud Security
Professional (CCSP), AWS Certified Cloud Practitioner, AZ500 Benefits • Medical/dental/vision • Life insurance • Short and long term disability coverage • Paid time off with newly hired associates receiving a minimum of 18 days paid time off each full calendar year pro-rated quarterly based on hire date • Nine paid holidays • 8 hours of Lifetime paid time off • 8 hours of Unity Day paid time off • 401(k) with company match • Company-paid pension plan • Business casual attire • And more Company Overview • Nationwide, a Fortune 100 company based in Columbus, Ohio, is one of the largest and strongest diversified insurance and financial services organizations in the United States.
It was founded in 1925, and is headquartered in Columbus, Ohio, USA, with a workforce of 10001+ employees. Its website is Company H1B Sponsorship • Nationwide has a track record of offering H1B sponsorships, with 8 in 2023, 2 in 2022. Please note that this does not guarantee sponsorship for this specific role. Apply tot his job