DETROIT, MI Henry Ford Health System
LEARN MORE / APPLY
GENERAL SUMMARY:
The Information Security Forensic Lead position is a valued member of the IPSO department and will work closely with other members of the SOC, IPSO (Risk, Privacy, etc.) and IT programs to develop and implement a comprehensive approach to the management of security risks and forensics. The Information Security Forensic Lead conducts thorough investigations into the nature of the attack. The Information Security Forensic Lead looks deeper into security incidents and assist in investigating cyber incidents. The primary purpose of this position is to conduct high-level security investigations, computer forensic investigations, data recovery, and electronic discovery. The candidate will be expected to have a solid foundation of technical experience and expertise and possess strong communication skills. The Information Security Forensic Lead leads and addresses real security incidents and evaluates incidents identified by SOC Analyst analysts. The Information Security Forensic Lead uses threat intelligence such as updated rules and Indicators of Compromise (IOCs) to pinpoint affected systems and the extent of the attack. Analyzes running processes and configs on affected systems taking forensic imaging as needed and analyzing forensic images with approved legal forensic software (encase, FTK). Carries out in-depth threat intelligence analysis to find the perpetrator, the type of attack, and the data or systems impacted. Creates and implements a strategy for containment and recovery formulate plans to repair damaged assets, keep other assets safe, and work to remove the threat. Working with all aspects of the SOC and IT teams to focus on containment, repel attacks, and repair affected systems. Intelligence gathered after an incident is often shared with authorities and other organizations and can be used as a basis to prevent future attacks.
EDUCATION/EXPERIENCE:
Bachelor’s degree in Computer Science, Cybersecurity, Information Security, Management Information Systems, Information Technology, Engineering, or related field required.
Five (5) years of experience in the following: Information Technology/Cybersecurity. System Analysis and Forensic Tools (e.g. FTK, EnCase).
Log Management and SIEM (e.g. Splunk, IBM QRadar, HP ArcSight).
Experience in Endpoint Security (e.g. Carbon Black Enterprise Protection, Carbon BlackEnterprise Response, Symantec, McAfee, Forefront).
Experience in various areas of IT system/network administration.
Experience conducting security assessments, penetration testing, and ethical hacking, preferred.
Knowledge and experience with the following operating systems: Windows, Macintosh, Linux or UNIX.
Must have understanding of information systems security; network architecture; general database concepts; document management; hardware and software troubleshooting; electronic mail systems, Microsoft Office applications; intrusion tools; and computer forensic tools such as EnCase, Access Data, and FTK.
Inquisitive, problem solving oriented with strong analytical, critical observation skills.
Willing to follow processes and procedures while maintaining the flexibility to `think outside the box’.
Excellent written and oral communication skills.
Highly motivated with the ability to self-start, prioritize, multi-task and work in a team setting Logical and independent mind and meticulous attention to detail. Objectivity and sensitivity when dealing with confidential information. Ability to work under pressure and to a deadline and the ability to deal with stressful and emotional situations with concentration and patience. Proficiency in conducting live analysis on endpoints, networks, and multiple platforms is desired.
CERTIFICATIONS/LICENSURES:
Certified Forensic Computer Examiner (CFCE) certification.
Certified Information Systems Security Professional CISSP certification.
You will be required to obtain certification within the year if not already obtained.
Additional Information
Organization: Corporate Services
Department: Ascension Cybersecurity IR
Shift: Day Job
Union Code: Not Applicable
Additional Details
This posting represents the major duties, responsibilities, and authorities of this job, and is not intended to be a complete list of all tasks and functions. It should be understood, therefore, that incumbents may be asked to perform job-related duties beyond those explicitly described above.
Overview
Henry Ford Health partners with millions of people on their health journey, across Michigan and around the world. We offer a full continuum of services – from primary and preventative care to complex and specialty care, health insurance, a full suite of home health offerings, virtual care, pharmacy, eye care and other health care retail. With former Ascension southeast Michigan and Flint region locations now part of our team, Henry Ford’s care is available in 13 hospitals and hundreds of ambulatory care locations. Based in Detroit, Henry Ford is one of the nation’s most respected academic medical centers and is leading the Future of Health: Detroit, a $3 billion investment anchored by a reimagined Henry Ford academic healthcare campus. Learn more at henryford.com/careers .
Benefits
The health and overall well-being of our team members is our priority. That’s why we offer support in the various components of our team’s well-being: physical, emotional, social, financial and spiritual. Our Total Rewards program includes competitive health plan options, with three consumer-driven health plans (CDHPs), a PPO plan and an HMO plan. Our team members enjoy a number of additional benefits, ranging from dental and eye care coverage to tuition assistance, family forming benefits, discounts to dozens of businesses and more. Employees classified as contingent status are not eligible for benefits.
Equal Employment Opportunity/Affirmative Action Employer
Equal Employment Opportunity / Affirmative Action Employer Henry Ford Health is
committed to the hiring, advancement and fair treatment of all individuals without regard to
race, color, creed, religion, age, sex, national origin, disability, veteran status, size, height,
weight, marital status, family status, gender identity, sexual orientation, and genetic information,
or any other protected status in accordance with applicable federal and state laws.
S:SKINTIAGP3
LEARN MORE / APPLY
Henry Ford Health System
Job Hiring / DETROIT, MI / Lead – Info Security Forensics | Full Time / Henry Ford Health System >> APPLY/LEARN MORE >> https://de.jobsyn.org/fa0084e51ccf49e3bc701974fa3dd8538003 >> #job #jobs #hiring #BGJobs
+++++++++++++++
? Looking for more jobs like this? Find more at CareerOneStop, sponsored by the U.S. Department of Labor Employment and Training Administration.
+++++++++++++++
US Work-eligible
DETROIT, MI
