Cyber Investigator [ insider threat, data loss prevention, digital forensics ] - Senior Analyst

AIG - Atlanta, GA

posted 4 days ago

Full-time - Senior
Atlanta, GA
Insurance Carriers and Related Activities

About the position

The Cyber Investigator plays a crucial role in AIG's Information Security Office by safeguarding the company's critical assets from internal threats and minimizing overall risk. This senior-level position is recognized as a subject matter expert in digital forensics, insider threats, and cyber investigations, responsible for conducting sensitive investigations and providing expert guidance to enhance the organization's security posture.

Responsibilities

  • Perform highly sensitive and confidential investigations, including digital forensic analysis, involving internal risks such as employee misconduct, intellectual property theft, embezzlement, misuse, harassment, and physical security threats.
  • Lead proactive efforts to identify, disrupt, and protect AIG from any internal threats that may undermine the integrity and operations of the business.
  • Conduct forensic analysis of physical devices and other electronic data sources in support of internal investigations and other legal requests using forensically sound processes.
  • Provide subject matter guidance and work collaboratively with incident response and other cyber security teams in the event of a cross-functional investigation.
  • Drive continuous improvement across the cyber investigations group and its processes.
  • Utilize a range of data sources, systems, and tools to collect, search, recover, sort, and organize large volumes of digital evidence during all phases of the investigative process.
  • Collect and preserve electronically stored evidence and digital media using repeatable and defensible procedures, ensuring chain of custody throughout the evidence lifecycle.
  • Deliver clear and meaningful results and associated reporting to requestors of various levels across the organization.
  • Maintain awareness of new forensic technology, techniques, and industry best practices.
  • Mentor junior level security professionals and periodically perform quality review of their work.
  • Assist team leadership with the development, collection, and publication of metrics that illustrate team performance and highlight obstacles thwarting team potential.

Requirements

  • Minimum of 7 years experience in computer forensics, investigations, or similar information security discipline leading digital investigations following legally sound practices (including chain of custody).
  • Working knowledge and proven experience with current digital forensic best practices and methodologies.
  • Demonstrated expertise in both working in and handling extremely confidential investigations.
  • Experience with forensic technologies such as EnCase, AXIOM, and Cellebrite.
  • Experience with emerging cloud technology services and their effect on digital investigations.
  • Good understanding of possible methods of internal and external data movement.
  • Ability to navigate a complex global network as part of the investigative research process.
  • Familiarity with processes and technologies for collections from mobile device platforms.
  • Strong understanding of enterprise email systems including Office 365 and MS Exchange.
  • Experience with enterprise level SIEM and DLP tools such as Splunk, McAfee, and Symantec.

Nice-to-haves

  • EnCase Certified Examiner - EnCE
  • GIAC Certified Forensic Analyst - GCFA
  • GIAC Certified Forensic Examiner - GCFE
  • Certified Forensic Computer Examiner - CFCE
  • Certified Information Systems Security Professional - CISSP

Benefits

  • Comprehensive benefits package focused on health, wellbeing, and financial security.
  • Professional development opportunities.
  • Flexible work arrangements.
  • Diversity and inclusion learning programs.
  • Cultural awareness activities and Employee Resource Groups (ERGs).

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service