Digital Forensics Specialist - Oracle

**Job Description** **RESPONSIBILITIES/ TASKS** + Maintain inventory, operability, and accountability of assigned company assets + Assist in testing assigned forensic tools and applications + Perform forensic imaging of computer and mobile systems and other data collections + Identify strengths, suggest workflow improvements, and gaps in capabilities of tools and applications + Work with internal stakeholders to ensure collection requests are performed in a forensically sound and timely manner + Document and follow Chain of Custody procedures to ensure quality and defensibility of forensic collections + Review documentation and procedures to help identify areas for thoroughness or improvement + Assist in forensic analysis of data for investigative purposes + Engage with other lines of business contacts within Oracle to expand capabilities for collections by establishing trusted and trained employees to serve as virtual team members + Professionally communicate with other employees and internal customers as needed for data or physical acquisitions + Ability to communicate effectively, timely, and appropriately while collaborating with a global team + Perform other duties as assigned **QUALIFICATIONS** Required qualifications + University degree from an accredited college or university, or equivalent certifications + 3 years of experience in information security, law enforcement or other related field, and of which at least 1 year is directly related to digital forensics + Strong technical experience, including multiple operating systems and networking + Knowledge of industry digital forensics standards and processes. + Good organizational skills and detail-orientation essential + Experience with disk encryption solutions including Microsoft Bitlocker, LUKS, FileVault, TrueCrypt, VeraCrypt, McAfee or Symantec Disk Encryption + Good presentation, written and verbal communication skills + Self-starter: doesn't need to be micro-managed + Problem solving skills and a good understanding of the scientific process + Excellent team player and collaborator + Ability to document technical procedures in a user-friendly way + Ability to transfer technical knowledge and cross-train others + Knowledge of forensic imaging and analysis of workstations, servers, cloud compute resources, and mobile devices + Direct experience with and including official training and certification in multiple of the following: + BlackLight and MacQuisition + Magnet Forensics Axiom + OpenText/Guidance EnCase + Cellebrite Tools + Oxygen Forensics Detective + FTK / AccessData Enterprise + Ability to Travel Internationally approximately 25% + Approximately 25% office / 75% work-from-home **Responsibilities** Participates in Digital Forensic investigations and focus on internal investigations and security events with a mix of technical, analytical, investigative responsibilities with an internal drive of both finding, proving, and documenting artifacts as well as seeking root cause, options of solutions, and best outcomes. Will collect digital evidence from various endpoints, devices, systems, environments, and ensure integrity, completeness, and chain of custody while following policy and SOP. Will analyze various devices, logs, message, email, and activity to uncover knowledge and intent, looking for malicious activity or policy violations. Will utilize various approved tools and techniques as necessary to accomplish the goal of the investigation. Will produce detailed, accurate, defensible forensic reports, as well as internal SoPs and project documentation. Will work closely with incident response teams to investigate and resolve certain security events. Will develop new methods, and playbooks, as well as sophisticated scripts, applications, and tools, and trains others in their use. May participate in an incident management team, responding to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, and oversees root cause analysis. Evaluates existing and proposed technical architectures, policies, standards, and playbooks for security risk, provides technical advice to support the organization and recommends security controls to mitigate. Brings advanced-level skills to research, evaluate, track, and manage information security threats and vulnerabilities in situations where in-depth analysis of ambiguous information is required, and where computer programming/scripting knowledge is required. Focus on operational and strategic level tasks, and provide counsel and guidance to the junior level security operations engineers in the department. Minimum of 8 years related experience in an information security role supporting security programs and security engineering/architecture in complex enterprise environments. Hands on experience with enterprise security architecture, engineering and implementation required. Knowledge of compliance program security controls, like ISO 27001, SOC 2, HITRUST, and FedRAMP, as applied to cloud SaaS, PaaS and IaaS operations. Familiarity with SDLC principles and scripting & programming languages (such as Terraform, Python, and Ruby). Strong knowledge of: Cloud architecture and security principles. Risk Management Frameworks. *nix and Windows system administration. Experience with: Logging and log analysis. Identity management principles and technology. Preferred but not required qualifications include: Bachelor-level university degree in a relevant field from an accredited university, or equivalent. Strong knowledge of web technologies, middleware, database, OS, firewalls, network communication protocols and methods. Knowledge of database security principles. Knowledge of encryption technologies and architectures. Expert level experience in evaluating and assessing security threats across a variety of environments and industries. Expert level understanding of secure networking principles, routers, switches and load balancers. **About Us** As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's problems. True innovation starts with diverse perspectives and various abilities and backgrounds. When everyone's voice is heard, we're inspired to go beyond what's been done before. It's why we're committed to expanding our inclusive workforce that promotes diverse insights and perspectives. We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity. Oracle careers open the door to global opportunities where work-life balance flourishes. We offer a highly competitive suite of employee benefits designed on the principles of parity and consistency. We put our people first with flexible medical, life insurance and retirement options. We also encourage employees to give back to their communities through our volunteer programs. We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by calling +1 888 404 2494, option one. **Disclaimer:** Oracle is an Equal Employment Opportunity Employer*. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law. *** Which includes being a United States Affirmative Action Employer**