Information Security Forensics and Incident Response Lead

  • Corning Incorporated
  • Corning, NY 14830, USA
  • Nov 09, 2020
[Information Technology]

Job Description

Information Security Forensics and Incident Response Lead+ **Please wait...****Date:** Oct 9, 2020**Location:** Charlotte, NC, US, 28216Corning, NY, US, 14831**Company:** CorningRequisition Number: 42079Corning is one of the worlds leading innovators in materials science. For more than 160 years, Corning has applied its unparalleled expertise in specialty glass, ceramics, and optical physics to develop products that have created new industries and transformed peoples lives.Corning succeeds through sustained investment in R, a unique combination of material and process innovation, and close collaboration with customers to solve tough technology challenges.The global Information Technology (IT) Function is leading efforts to align IT and Business Strategy, leverage IT investments, and optimize end to end business processes and associated information integration technologies. Through these efforts, IT helps to improve the competitive position of Corning's businesses through IT enabled processes. IT also delivers Information Technology applications, infrastructure, and project services in a cost efficient manner to Corning worldwide.As the Forensics Team Lead, you will be managing a group of highly productive employees to implement the forensics critical function of our incident response. You will be working with standard forensics tools such as Encase and other tools. Due to the nature of incident response, we are looking for someone who can effectively communicate with managers and individual contributors in an incident response situation.When not working on an incident, you will be preparing your team, infrastructure, and processes for the next breach. This entails leading and training your team and integrating other functional areas.An effective forensics team lead will build, lead, and manage a team of technical security operations staff that will actively operate, maintain, customize, and configure information security tools and processes in support of the information security program.Remote work opportunities will be considered for the right candidate and/or possible relocation to Charlotte, NC or Corning, NY.**Basic Qualifications:**+ Bachelor Degree Information Technology, Computer Science, or related field or equivalent experience.+ 10 or more years general information technology experience with 5 years of experience in the area of information security.+ Experience in information security incident response, forensic data collection procedures, issue tracking, and methodically working a technical problem.+ Demonstrated experience in the field of digital media forensics+ Demonstrated experience in mobile device data extraction and analysis+ In-depth experience with file system forensics+ In-depth experience with registry analysis+ In-depth experience with Internet history analysis+ Understanding of steganography and encryption detection and analysis+ Understanding of managing complex large data set analysis+ In-depth experience with timeline analysis+ Experience with forensic media imaging+ In-depth experience with email analysis+ In-depth experience with signature and hash analysis+ Demonstrated experience with forensics tools such as EnCase, Forensic Toolkit, F-Response+ Programming experience using Python+ Strong documentation and written communication skills with technical report writing experience**Additional Information:**+ Demonstrated strength in resolving conflicts and influencing stakeholders by active listening and effective communication techniques.+ Able to use good judgment in the management and mentorship of professional resources with various degrees of experience and aptitude.+ Demonstrated technical acuity in the field of Information Technology Operations and/or Security Operations.+ Knowledge, understanding, and ability to apply technical security standards and tools.+ Excellent conceptualization, analytical and logic skills.+ Ability to troubleshoot and mentor technical staff in formulating conclusions and judgments.+ Ability to successfully facilitate collaboration across multiple functions, departments and levels.+ Travel: Limited/related to training & capability development efforts+ Some off-hours/on-call may be required+ This position does not support immigration sponsorship.We prohibit discrimination on the basis of race, color, gender, age, religion, national origin, sexual orientation, gender identity or expression, disability, or veteran status or any other legally protected status.We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.**Nearest Major Market:** Charlotte+ **Please wait...**
Associated topics: attack, cybersecurity, forensic, information assurance, malicious, phish, security engineer, threat, violation, vulnerability