Cybersecurity Forensic Analyst - Senior Job at Huntington National Bank in Colum

Join to apply for the Cybersecurity Forensic Analyst - Senior role at Huntington National Bank

Overview

The Cybersecurity Forensics Analyst - Senior will use Huntington's forensics tools to complete investigations and respond to Information Security incidents. He/she will serve within the DFIR (Digital Forensics & Incident Response) team to perform forensic investigations and Computer Incident Response Team (CIRT) functions, working with other forensics analysts to ensure all incidents and investigations are promptly addressed. The role works closely with members of the Cybersecurity Operations Center (CSOC), Insider Threat team, Corporate Security, Human Resources, and Legal to conduct forensics analysis, process digital evidence in support of litigation, and respond to cybersecurity incidents.

Compensation Range: $57,000.00 - $113,000.00 USD Annual. The compensation range represents the low and high end of the base compensation range for this position. Actual compensation will vary and may be above or below the range based on location, experience, and performance. Colleagues in this position are also eligible to participate in an applicable incentive compensation plan. Huntington provides a variety of benefits including health insurance, wellness program, life and disability insurance, retirement savings plan, paid leave programs, paid holidays and PTO.

Responsibilities

• Supports forensic investigations by coordinating with the Cyber Incident Response Team (CIRT) and managing assigned forensic tasks. Acts as a point of contact for Legal, Corporate Security, Human Resources, and other departments requiring forensic assistance. Provides guidance to attorneys and investigators regarding the relevance and interpretation of digital evidence in support of cases or internal investigations. May testify in court, if required.
• Investigates reports of suspicious activity, analyzing evidence to determine the “who, what, when, and how” aspects of the incident.
• Maintains the chain of custody for evidence used in crimes and/or incidents, including computers, mobile devices, and/or digital storage media.
• Tracks and reports on metrics pertinent to the forensics workload.
• Reviews technical and procedural documentation for systems and solutions to ensure completeness and accuracy.
• Maintains and updates runbooks and other support documents as appropriate.
• Provides input to architecture and technology teams on tools, processes, and requirements for forensics investigations.
• Maintains current knowledge of hardware, software and network technology and recommends modifications as required.
• Comply with the organization's cybersecurity policies and procedures among colleagues, contractors, alliances, etc.
• Assist with automation efforts to streamline incident response procedures and capabilities.
• Works with vendors to understand product roadmaps and plan for upgrades.
• Provide after hours on-call forensic support on a recurring basis.

Qualifications

Basic Qualifications

• 3 years in a Forensics or Incident Response roles
• 3 years experience documenting and maintaining procedures/runbooks
• Bachelor's degree in Information Systems, Computer Science or related field preferred

Preferred Qualifications

• Experience working with Enterprise Forensics tools
• Experience with OpenText Enterprise EnCase solution, Exterro Forensics Toolkit, or similar solutions in an enterprise-wide deployment a plus
• Experience with mobile forensics tools such as Cellebrite, Oxygen, or XRY
• Experience with Python, PowerShell, or Kusto Query Language
• Strong organizational skills
• Excellent communication and customer service skills
• SIEM/SOAR, EDR/XDR experience a plus
• Ability to develop strong partnerships
• Ability to work flexible hours
• Strong troubleshooting and problem-solving skills
• Forensics and Cybersecurity Certifications (GCFA, GCFE, GASF, GCFR, CFCE) or equivalent

Work Arrangement

Hybrid/Office-based as described by Huntington’s policy. Some positions outside the branch network may be eligible for flexible work arrangements. Remote roles may require occasional in-office collaboration. Specific work arrangements will be provided by the hiring team.

Work Authorization

Huntington will not sponsor applicants for immigration benefits. Applicants must be currently authorized to work in the United States on a full-time basis.

Employer Information

Huntington is an Equal Opportunity Employer.