Senior Associate, Information Security-Forensics

Job Title: Senior Associate, Information Security- Forensics

Reports To: The Senior Associate, Information Security- Forensics will report to the Client Services Supervisor, Client Services Manager, IT Supervisor/Manager, or equivalent leadership. 

 Job Overview: 

The Senior Associate, Information Security - Forensics is part of a global team and is responsible for incident response of cyber security incidents that are associated with our businesses, clients, and vendors; is technically skilled and ensures incident containment, remediation, and closure. This individual will be expected to work closely with the legal, data privacy, business, and client teams. They should be comfortable with interacting with senior executives including C-level staff.

Responsibilities:

· Lead investigation of cyber security incidents of higher severity.

· Analyze compromised/potentially compromised systems.

· Coordinate evidence/data gathering and document security incident reports.

· Manage, review and present written and oral reports in a pertinent, concise, and accurate manner for distribution to management.

· Maintain security processes such as application security, vulnerability management and incident response.

· Maintain current knowledge of tools and best practices in advanced persistent threats, tools, techniques, procedures of attackers, forensics, and incident response.

· Perform complex forensic investigations into system breaches, data leaks, and system weaknesses.

· Provide technical expertise to staff on security incident monitoring, triage, response, threat & vulnerability management, and security analysis.

· Provide strategic direction on types of Incident Management activities that will drive efficiencies across company.

Qualifications

· 4 or more years of experience in an analytical role of either forensics analyst (Linux, Windows, or MacOS), threat analyst, incident response or security engineer/ consultant.

· Experience on forensic investigation tools such as: FTK, EnCase, Sleuthkit.

· Experience with cloud environment such as: Azure, AWS, GCP.

· Familiarity with the MITRE ATT&CK or related frameworks.

· Experience developing and managing incident response programs.

· Proficient in EDR - CrowdStrike and/or SentinelOne.

· Proficient in social engineering, phishing, and related fraud schemes.

· Understanding of real-world exploits work, how offensive attackers laterally move between internal systems and to establish persistence.

· Strong general knowledge of security concepts and expertise in network and web application security issues.

· Experience with a scripting language such as Python, Bash, PowerShell, or other scripting language in an incident handling environment.

Other Duties: 

This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice. 

 

Pay Range$50—$55 USD

WHAT WE OFFER

• Career Growth: An opportunity to enter a job that allows you to learn new skills or use a variety of them that may lead you to uncover other career opportunities!
• Learning & Development: At SPS, we promote a work culture of learning so that you can develop to be the best at what you do!
• We Recognize Talent: We offer a variety of recognition programs for all levels of employees!
• Benefit Offerings: Medical, Dental, Vision, HCFSA, DCFSA, HSA, Commuter Transit and Parking, Supplemental Life Insurance, Accident Insurance, Critical Illness, Hospital Indemnity, Legal Program, Identify Theft Protection, Pet Discounts, Pet Insurance, Group Home and Auto Insurance, EAP, Short Term Disability, Life Insurance, Education Discounts, 401k w/ matching, Entertainment Discounts, & Paid Time Off.
  • Note: Please inquire with the Human Resources team for benefit offerings per role as regular positions that routinely are under 30 hours/week may have a different benefit offering.

About SPS

SPS is an award-winning employer of choice offering outsourcing solutions that leverage Intelligent Automation (Artificial Intelligence & Robotic Process Automation) in more than 22 countries across the globe.

In North America, our services include Mailroom Management (both physical and digital), Office Services such as Reception, Lobby Concierge and Conference Room Management in addition to Document Processing Services utilizing leading edge technologies. Our clients today are companies in sectors such as banking, insurance, legal, higher education, advertising and other professional services, including many Fortune 500 companies.

SPS is committed to delivering high caliber outsourcing experience to our clients and offering our employees challenging and exciting career opportunities throughout the North America region and globally. SPS is committed to investing in the professional development of our employees and offers competitive comprehensive benefits and diverse development training programs that lead to building careers.

At SPS we embrace the uniqueness of our employees and are committed to the fair and equal treatment of all people, applicants, and employees by promoting a culture of access, inclusion, equity and diversity.

SPS provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual and reproductive health choices, national origin, age, disability, genetics, military status, gender identity or expression, sexual orientation and/or any other status protected by law.

To view our privacy policy, click on the link below:

SPS-North America Privacy Policy