Los Angeles, CA

Sr Digital Forensics and Incident Response Analyst -Telecommute

In this role, the individual will provide intelligence operational support to the Cyber Forensic Investigations Manager as part of our Cyber Defense team. The Cyber Defense (CD) team has identified an opportunity to significantly enhance the effectiveness of our current cyber defenses posture. The value proposition centers on the development of a holistic cyber defense model that requires alignment and integration of key technical resources, security functions and related processes. We are creating a state-of-the-art centralized cyber defense operating model which will manage the security threats across the enterprise effectively and consistently.

Primary Responsibilities:

Network based forensic acquisition, investigation and analysis
Conducting malware analysis (Static & Dynamic)
Cloud based forensics analysis
Conducting forensic examinations on hard drives, thumb drives, and memory cards.
Creating detailed forensic reports describing in plain business language the who, what, when, and how of the event.
Creating a feedback loop with security control owners to help tune systems based on the results of investigations.
Briefing senior leadership, peers, and customers in clear language on incident findings
Performing analysis on computer logs, firewall and server logs to discover links and analyze timelines.
Participating in exercises to simulate attacks and determine responsiveness of processes and procedures.
Producing Indicators of Compromise (IOCs) for handoff to Intelligence Services.
Acting as high tier escalation point for security incidents to provide technical expertise to the incident response process

Required Qualifications:

4 or more years of experience working in computer forensics, cyber security investigation and other related fields
Experience conducting complex forensic investigations using industry standard forensic tools including but not limited to EnCase, FTK, F-Response or X-Ways
Subject matter expert knowledge of the technological aspects of security
Deep understanding of the importance of artifacts in endpoint, network, and application logs
Understanding of the technology risks that are inherent to a business and an ability to effectively communicate those risks
Must be able to obtain NAC clearance
Must be available to support on call rotation

Preferred Qualifications:

Direct experience with current advanced persistent threats (APT)
Experience with NetWitness, FireEye, Splunk, and/or RSA Security Analytics
Knowledge of Volatility, HBGary Responder Pro and/or Mandiant Redline
Knowledge of Chain of Custody process and procedures
Network traffic knowledge
Experience with XDR solution, e.g. Defender, FireEye HX, etc.
Deep expertise with EnCase, F-Response, or X-Ways
1 or more of the following certifications: QSA, CCFP, EnCE, X-Pert, GCFE, GCFA, GNFA, CISSP, and/or GREM Certification

To protect the health and safety of our workforce, patients and communities we serve, UnitedHealth Group and its affiliate companies require all employees to disclose COVID-19 vaccination status prior to beginning employment. In addition, some roles and locations require full COVID-19 vaccination, including boosters, as an essential job function. UnitedHealth Group adheres to all federal, state and local COVID-19 vaccination regulations as well as all client COVID-19 vaccination requirements and will obtain the necessary information from candidates prior to employment to ensure compliance. Candidates must be able to perform all essential job functions with or without reasonable accommodation. Failure to meet the vaccination requirement may result in rescission of an employment offer or termination of employment.

Technology Careers with Optum. Information and technology have amazing power to transform the health care industry and improve people's lives. This is where it's happening. This is where you'll help solve the problems that have never been solved. We're freeing information so it can be used safely and securely wherever it's needed. We're creating the very best ideas that can most easily be put into action to help our clients improve the quality of care and lower costs for millions. This is where the best and the brightest work together to make positive change a reality. This is the place to do your life's best work.SM

Diversity creates a healthier atmosphere: UnitedHealth Group is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.

*All Telecommuters will be required to adhere to UnitedHealth Group’s Telecommuter Policy.

Colorado, Connecticut or Nevada Residents Only: The salary range for Colorado residents is $79,700 to $142,600. Pay is based on several factors including but not limited to education, work experience, certifications, etc. As of the date of this posting, In addition to your salary, UHG offers the following benefits for this position, subject to applicable eligibility requirements: Health, dental, and vision plans; wellness program; flexible spending accounts; paid parking or public transportation costs; 401(k) retirement plan; employee stock purchase plan; life insurance, short-term disability insurance, and long-term disability insurance; business travel accident insurance; Employee Assistance Program; PTO; and employee-paid critical illness and accident insurance.

UnitedHealth Group is a drug-free workplace. Candidates are required to pass a drug test before beginning employment.

#EISecurity

Recommended Skills

Certified Information Systems Security Professional
Communication
Computer Forensics
Computer Networks
Computer Security
Customer Value Proposition

Click here to apply

Browse other jobs

« Project Associate 7

Student Drivers »