Sr. Cybersecurity Analyst - Digital Forensics and eDiscovery

Company Description

Visa is a world leader in payments and technology, with over 259 billion payments transactions flowing safely between consumers, merchants, financial institutions, and government entities in more than 200 countries and territories each year. Our mission is to connect the world through the most innovative, convenient, reliable, and secure payments network, enabling individuals, businesses, and economies to thrive while driven by a common purpose – to uplift everyone, everywhere by being the best way to pay and be paid.

Make an impact with a purpose-driven industry leader. Join us today and experience Life at Visa.

Job Description

Visa is looking for a Sr. Cybersecurity Analyst – Digital Forensic and eDiscovery to join our team. This is a key role in the Cyber Defense team. You will be working as part of a small team supporting the DFIR & eDiscovery Manager and the wider organization across a number of different areas including internal investigations and litigation support. You will be responsible for reporting to key internal stakeholders, including Legal and Human Resources on a diverse range of issues.

In order to be successful in this role you will be naturally inquisitive with a proven investigative background. You will be a committed problem solver and able to work independently to achieve the desired goals in an agreed time frame.

The successful candidate will be able to carry a large caseload and be able to prioritize tasks to ensure that critical deadlines are met in order to minimize reputational damage to the organization. You will also present a professional, capable and approachable demeanor to others to ensure that all engagements with both internal and external stakeholders reflect positively on yourself, the Cyber Defense team and Visa.

Essential Functions

• Work well as a member of a cross-functional team.
• Must have strong initiative and critical thinking skills.
• Strong interpersonal skills.
• Ability to show judgement and initiative and to accomplish job duties.
• Ability to make decisions and solve problems while working under pressure.
• Consistently improves team results by taking initiative and assuming more responsibility.
• Possess skills to collect, process, preserve and analyze data from electronic data sources, including laptop and desktop computers, servers, and mobile devices, per company policies and practices.
• Maintain full chain of custody and evidence tracking.
• Expert ability to perform log, memory, and raw analysis.
• Liaise with the Legal and produce high-quality oral and written work products presenting complex technical matters clearly and concisely.
• Assist with key components of the eDiscovery and forensics collections.
• Ability to manage assigned digital forensic efforts in support of eDiscovery requests, employee investigations, and cybersecurity incident response.
• Proficiency in eDiscovery with industry-standard tools, and practices applying technical and functional skills.
• Keep abreast of current best practices, emerging technologies, and solutions in the context of eDiscovery and Legal hold.
• Assume responsibility for the management of the in-house eDiscovery platform.

This is a hybrid position. Hybrid employees can alternate time between both remote and office. Employees in hybrid roles are expected to work from the office 2-3 set days a week (determined by leadership/site), with a general guidepost of being in the office 50% or more of the time based on business needs.

Qualifications

• Experience in TCP/IP network forensics.
• Experience with Unix, Linux, Windows, Mac OS X, iOS and Android operating systems.
• Reading and interpreting PCAP and other network forensic data.
• Experience with EnCase, FTK, X-Ways or Other Computer Forensic Tools.
• Digital Forensic and Incident Response Certifications such as GCFE, GCFA, CHFI, CCE, CFC, EnCE, CFCE, CEH, CISSP, CND.
• Demonstrated skill in performing post-incident computer forensics without destruction of critical data.
• Experience with most imaging types and methods.
• Experience in forensic analysis of compromised systems.
• Knowledge of policies and procedures regarding chain of custody practice
• Knowledge of proper forensic investigation techniques when working with compromised system images or files.
• Technical Report Writing Experience.
• Subject Matter Expert on the Open Text EnCase platform.
• Subject Matter Expert on the Exterro FTK platform.
• Forensic Certification a plus.
• Extensive experience in eDiscovery case management and support.
• Be able to demonstrate a thorough understanding of the EDRM and the ACPO Good Practice Guide for Digital Evidence.
• Thorough understanding of the eDiscovery lifecycle which includes identification, collection, processing, review, and production.
• Understanding of evidence management, handling, and chain of custody.
• Ability to coordinate multiple stakeholders and matters, navigating the differing needs and timelines of each.
• Excellent written and oral communication skills.
• Holds, or is working towards, an industry accepted certification validating eDiscovery capabilities: Nuix Workstation Data Discovery Certified, Relativity Certified Administrator, etc.
• Experience using industry standard eDiscovery software tools: primarily Clearwell, if not, then Relativity, NUIX, Ringtail, EnCase eDiscovery etc.
• Experience with Veritas Data Insight.
• Experience using Veritas Enterprise Vault.
• eDiscovery certificate a plus.
• Detailed knowledge of litigation and related discovery processes.

Additional Information

Visa is an EEO Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Visa will also consider for employment qualified applicants with criminal histories in a manner consistent with EEOC guidelines and applicable local law.