Responsibilities:

📍Insider Threat Monitoring: Proactively identify and assess potential insider threats, such as unauthorized access, data exfiltration, and policy violations. 📍Macos Forensic Investigations: Lead forensic investigations on macOS, conducting in-depth analysis of file systems, memory, logs, and applications to uncover malicious activities, insider threats, and security incidents. 📍Incident Response: Collaborate with the Incident Response team to investigate breaches, perform forensic analysis, and recommend remediation strategies specific to macOS platforms. 📍Digital Evidence Handling: Meticulously collect, preserve, and analyze digital evidence adhering to chain-of-custody protocols. 📍Threat Hunting and Detection: Proactively hunt for malicious insider activity using advanced tools and techniques to detect early indicators of compromise or suspicious behavior. 📍Reporting & Documentation: Produce detailed forensic reports, including timelines, attack vectors, and attribution. Meticulously document case summaries, methodologies, and remediation steps. 📍Collaboration: Work closely with IT, legal, compliance, and other stakeholders to ensure a holistic approach to insider threat management and forensic analysis.

Qualifications:

📍Education: B.S. in Computer Science, Information Security, Digital Forensics, a related field, or equivalent work experience.

Experience:

📍3+ years experience in digital forensics with a strong focus on macOS. 📍Proven track record conducting insider threat investigations. 📍Familiarity with both static and dynamic forensic techniques on Mac computers. 📍Expertise using forensic tools such as EnCase, X-Ways, Cellebrite, Autopsy, and macOS-specific tools (BlackBag, mac_apt, etc.).