The Boeing Company Incident Response Specialist - Computer Forensics Examiner in Mesa, Arizona
The Boeing Company has an exciting opportunity for an experienced Incident Response Specialist to join the Information Security Computing Forensics team. The successful candidate will work in a fast-paced, high volume environment supporting internal investigators and attorneys across the enterprise by identifying, collecting, preserving, and analyzing digital evidence.
The successful candidate will lead and/or perform computing forensic response and E-Discovery activities across broad and sometimes undefined technology profiles that can include multiple systems.• Determines incident scope, nature, technical mechanisms, personnel involvement, and business impact. Identifies incident path and method. • Collects and preserves evidence. Performs event correlation and analysis. • Defines and monitors time critical risk mitigation steps. Drafts, reviews and delivers incident/investigation reports and makes recommendations for future team and technical method process enhancements. • May be called to provide testimony in administrative and criminal hearings. • Researches and proposes undefined technical response methods, tools and processes.
The successful candidate to demonstrate significant functional experience/knowledge in application of computer science and investigative procedures such as search authority, chain of custody, validation with mathematics, use of digital forensics tools, reporting, and expert presentation.
The position requires the ability to work with autonomy and as a team player, maintain extreme confidentiality in sensitive matters, and communicate comfortably with personnel in all levels to include management and executive levels.
While extensive travel is not expected, the selected candidate may be required to be available for occasional domestic and international travel when needed.
The successful candidate will have experience with tools that may include, but are not limited to AccessData’s Forensic Toolkit (FTK), X-Ways, Cellebrite, Magnet Forensics Axiom or Internet Evidence Finder (IEF), F-Response, hardware write blockers, Sherpa Software’s Discovery Attender, Passware, and Splunk to name some.
Additional duties include assisting management and end users with access to inaccessible data needed for business continuity purposes, audit assistance, and data spill containment.
Boeing is the world's largest aerospace company and leading manufacturer of commercial jetliners and defense, space and security systems. A top U.S. exporter, the company supports airlines and U.S. and allied government customers in 150 countries. Boeing products and tailored services include commercial and military aircraft, satellites, weapons, electronic and defense systems, launch systems, advanced information and communication systems, and performance-based logistics and training.
Technical bachelor's degree and typically five or more years of Information Technology related work experience.
Basic Qualifications: * Three or more years of Cyber Security work experience to include Incident Response, Computer Forensics, or E-Discovery. * Experience using digital forensics tools beyond the classroom environment. * Experience drafting technical findings reports based on network or system analysis to include incident path and user attribution. * Candidate must possess or be able to obtain at a minimum a Secret security clearance.
Preferred Qualifications: * Possess a certification in the field of computer forensics and/or Information Security (i.e. GCFE/A, CISSP, Security , etc.) * More than 3 years of technical experience performing computer and/or network incident log analysis or computing related hardware and/or software investigations. * Network Security certifications a plus. * Any programming/scripting languages a plus.
This position requires the ability to obtain a US Security Clearance, for which the US Government requires US Citizenship.
This position is subject to the Inside Data Protection Security Background Screening process which will determine the applicant’s suitability for access to highly sensitive information. The background screening process will review the applicant’s external criminal records, credit checks where allowed by state law, claimed education, as well as internal (Boeing) records. The background screenings are conducted every two years.
Job Incident Response Specialist
Organization: Information Security
Title: Incident Response Specialist - Computer Forensics Examiner
Location: South Carolina-North Charleston
Other Locations: United States-Arizona-Mesa
Requisition ID: 1800020045