GENERAL DESCRIPTION AND POSITION GOAL
Senior Forensic Specialist reports to the Director of Digital Forensics Management or another manager as assigned. The incumbent assists in performing forensic collection and analysis activities throughout Oracle, and personally manages highly confidential and sensitive information about legal matters, security events, and investigations. In addition, the incumbent may provide technical advice and guidance to attorneys, human resources staff, physical security personnel, security incident response teams, or other stakeholders within Oracle.
RESPONSIBILITIES/ TASKS
- Maintain inventory, operability, and accountability of assigned company assets
- Assist in testing assigned forensic tools and applications
- Perform forensic imaging of computer and mobile systems and other data collections
- Identify strengths, suggest workflow improvements, and gaps in capabilities of tools and applications
- Work with internal stakeholders to ensure collection requests are performed in a forensically sound and timely manner
- Document and follow Chain of Custody procedures to ensure quality and defensibility of forensic collections
- Review documentation and procedures to help identify areas for thoroughness or improvement
- Assist in forensic analysis of data for investigative purposes
- Engage with other lines of business contacts within Oracle to expand capabilities for collections by establishing trusted and trained employees to serve as virtual team members
- Professionally communicate with other employees and internal customers as needed for data or physical acquisitions
- Ability to communicate effectively, timely, and appropriately while collaborating with a global team
- Perform other duties as assigned
QUALIFICATIONS
Required qualifications
- University degree from an accredited college or university, or equivalent certifications
- 3 years of experience in information security, law enforcement or other related field, and of which at least 1 year is directly related to digital forensics
- Strong technical experience, including multiple operating systems and networking
- Knowledge of industry digital forensics standards and processes.
- Good organizational skills and detail-orientation essential
- Experience with disk encryption solutions including Microsoft Bitlocker, LUKS, TrueCrypt, VeraCrypt, McAfee or Symantec Disk Encryption
- Good presentation, written and verbal communication skills
- Self-starter: doesn’t need to be micro-managed
- Problem solving skills and a good understanding of the scientific process
- Excellent team player and collaborator
- Ability to document technical procedures in a user-friendly way
- Ability to transfer technical knowledge and cross-train others
- Knowledge of forensic imaging and analysis of workstations, servers, cloud compute resources, and mobile devices
- Direct experience with and including training and certification in at least one of the following:
- BlackLight and MacQuisition
- Magnet Forensics Axiom
- OpenText/Guidance EnCase
- Cellebrite Tools
- Oxygen Detective
- FTK / AccessData Enterprise
- Paladin
- Ability to Travel Internationally approximately 25%
- Approximately 25% office / 75% work-from-home
Responsible for the planning, design and build of security architectures; oversees the implementation of network and computer security and ensures compliance with corporate security policies and procedures.
Responsible for basic planning, design and build of security systems, applications, environments and architectures; oversees the implementation of security systems, applications, environments and architectures and ensures compliance with information security standards and corporate security policies and procedures.
Assist in development of incident response capabilities, training, and tool validation.
May research, evaluate, track, and manage information security threats and vulnerabilities in situations where analysis of well-understood information is required and where computer programming/scripting knowledge is required.
May participate in an incident management team, responding to security events in line with Oracle incident response playbooks. Investigates purported intrusions and breaches, and oversees root cause analysis. Coordinates incidents with other business units and may assist the Incident Commander during serious incidents. Participates in developing new methods, and playbooks, as well as basic scripts, applications, and tools.
Research industry trends and constantly assess current controls and threat posture of new and existing products and services.
Recommend and implement new security controls across Oracle’s line of business (LOB).
Improve current processes and workflows to minimize manual efforts.
Minimum of 5 years related experience in an information security role, supporting security programs and security engineering/architecture in complex enterprise environments. Hands on experience with enterprise security architecture, engineering and implementation required.
Knowledge of compliance program security controls, like ISO 27001, SOC 2, HITRUST, and FedRAMP, as applied to cloud SaaS, PaaS and IaaS operations.
Familiarity with SDLC principles and scripting & programming languages (such as Terraform, Python, Ruby, etc.).
Preferred but not required qualifications include:
Bachelor-level university degree in a relevant field from an accredited university, or equivalent.
Experience in developing secure, scalable cloud architectures and distributed systems.
Experience with high-level software design and development and the design, use, and deployment of automation and orchestration frameworks.
Demonstrable scripting or programming experience.
An Oracle career can span industries, roles, Countries and cultures, giving you the opportunity to flourish in new roles and innovate, while blending work life in. Oracle has thrived through 40+ years of change by innovating and operating with integrity while delivering for the top companies in almost every industry.
In order to nurture the talent that makes this happen, we are committed to an inclusive culture that celebrates and values diverse insights and perspectives, a workforce that inspires thought leadership and innovation.
Oracle offers a highly competitive suite of Employee Benefits designed on the principles of parity, consistency, and affordability. The overall package includes certain core elements such as Medical, Life Insurance, access to Retirement Planning, and much more. We also encourage our employees to engage in the culture of giving back to the communities where we live and do business.
At Oracle, we believe that innovation starts with diversity and inclusion and to create the future we need talent from various backgrounds, perspectives, and abilities. We ensure that individuals with disabilities are provided reasonable accommodation to successfully participate in the job application, interview process, and in potential roles. to perform crucial job functions.
That’s why we’re committed to creating a workforce where all individuals can do their best work. It’s when everyone’s voice is heard and valued that we’re inspired to go beyond what’s been done before.
Oracle is an Equal Employment Opportunity Employer * . All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans’ status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.
* Which includes being a United States Affirmative Action Employer