Sr II Analyst - Cyber Investigations Forensics Analyst

NYU Langone Health is a world-class, patient-centered, integrated academic medical center, known for its excellence in clinical care, research, and education. It comprises more than 200 locations throughout the New York area, including five inpatient locations, a children's hospital, three emergency rooms and a level 1 trauma center. Also part of NYU Langone Health is the Laura and Isaac Perlmutter Cancer Center, a National Cancer Institute designated comprehensive cancer center, and NYU Grossman School of Medicine, which since 1841 has trained thousands of physicians and scientists who have helped to shape the course of medical history. At NYU Langone Health, equity, diversity, and inclusion are fundamental values. We strive to be a place where our exceptionally talented faculty, staff, and students of all identities can thrive. We embrace diversity, inclusion, and individual skills, ideas, and knowledge. For more information, go to nyulangone.org, and interact with us on LinkedIn, Glassdoor, Indeed, Facebook, Twitter, YouTube and Instagram.

Position Summary:
We have an exciting opportunity to join our team as a Sr II Analyst - Cyber Investigations Forensics Analyst.

The Senior Analyst will be a key member of the IT Security team responsible for performing critical functions within the Cyber Threat and Incident Response discipline.  The position plays a key role in the cybersecurity incident response process with a focus on collecting and preserving digital evidence, and supporting legal and incident response functions.  The Senior Analyst is expected to be fully aware of the enterprise's security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals.

Job Responsibilities:           

eDiscovery

• Faciliate and lead the eDiscovery service to support our Legal and HR departments when investigations are needed. Ensure adherence to the eDiscovery process.
• Coordinate with internal IT resources to collect, preserve, and document digital evidence according to industry best practices and legal requirements.
• Provide status and reports to Legal and HR of investigations.

Forensics

• Conduct digital forensics investigations in response to security incidents.
• Analyze digital evidence such as logs and network traffic to identify root cause of incidents.
• Work with external partners, when needed, to assist with forensic examinations of electronic evidence.

Documentation

• Maintain accurate records of all activities, including chain of custody and detailed forensics reports.
• Prepare detailed forensics reports for internal stakeholders. 

Incident Response and Collaboration

• Serve as the subject matter expert for eDiscovery and forensics tools. Define, maintain and continuously improve the technical roadmap and architecture for these products.
• Be familiar with the Cyber Threat and Incident Response team to identify and respond to security incidents as part of the operation support responsibilities.
• Share insights and findings from eDiscovery and forensics investigations to enhance the incident response process.
• Contribute to the development of incident response playbooks and strategies to mitigate future threats.
• Use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity.
• Provide first level and on-call support to analyze and triage potential incidents.
• Assist with projects that focus on enhancing detection and incident response capabilities and other improvements to the technologies used by the team.
• Support, administer, and fine tune other in-place security solutions for efficient and appropriate operations.

Minimum Qualifications:

• To qualify you must have a 5+ years experience in cyber threat intelligence, incident response, security operations teams, and malware analysis.
• 5+ years in enterprise firewalls and network
• Bachelor's degree with a focus in Information Security, Computer Science or Computer Engineering
• Familiar with the Electronic Discovery Reference Model (EDRM)
• Experience with providing eDiscovery and digital forensics support
• Knowledge to support eDiscovery and digital forensics software.

Preferred Qualifications:

• CISSP or CompTIA Security+
• Certified Computer Examiner (CCE)
• GIAC GCFE or GCFA

Qualified candidates must be able to effectively communicate with all levels of the organization.
NYU Langone Health provides its staff with far more than just a place to work. Rather, we are an institution you can be proud of, an institution where you'll feel good about devoting your time and your talents.
NYU Langone Health is an equal opportunity and affirmative action employer committed to diversity and inclusion in all aspects of recruiting and employment. All qualified individuals are encouraged to apply and will receive consideration without regard to race, color, gender, gender identity or expression, sex, sexual orientation, transgender status, gender dysphoria, national origin, age, religion, disability, military and veteran status, marital or parental status, citizenship status, genetic information or any other factor which cannot lawfully be used as a basis for an employment decision. We require applications to be completed online.
If you wish to view NYU Langone Health's EEO policies, please click here. Please click here to view the Federal "EEO is the law" poster or visit https://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm for more information.

NYU Langone Health provides a salary range to comply with the New York state Law on Salary Transparency in Job Advertisements. The salary range for the role is $92,065.99 - $127,258.56 Annually. Actual salaries depend on a variety of factors, including experience, specialty, education, and hospital need. The salary range or contractual rate listed does not include bonuses/incentive, differential pay or other forms of compensation or benefits.

To view the Pay Transparency Notice, please click here