Job Description
About the position If you’re passionate about innovation and love working in an environment where you can constantly improve and adopt new technologies to drive business results, then Nationwide’s Technology team could be the place for you! At Nationwide®, “on your side” goes beyond just words. Our customers are at the center of everything we do and we’re looking for associates who are passionate about delivering extraordinary care. Position Overview We are seeking a detail-oriented and technically proficient Digital Forensics Analyst to join our cybersecurity team. This role is responsible for conducting digital forensic investigations, analyzing digital evidence, and supporting incident response activities. The ideal candidate will have a strong background in forensic analysis tools, data analysis, and a deep understanding of operating systems, cloud platforms, and forensic processes. If you’re enthusiastic about delivering secure technology solutions to support a company providing extraordinary care to its customers, then Nationwide Technology is the place for you. Nationwide's industry-leading technology workforce embraces an agile work environment and a collaborative culture to deliver outstanding solutions and results. If that sounds like something you aspire to, we want to hear from you! As a Cyber Operations professional, you'll be on the front line, protecting Nationwide's members and data! You will be immersed with incident response, cyber strategy and guidance, defense optimization and scanning and exploitation. We'll count on you to provide enterprise services in forensic investigation, attack and penetration, vulnerability scanning and response, cyber defense, security intelligence, security operations and infrastructure risk management. Responsibilities • Lead and conduct digital forensic investigations involving data breaches, malware infections, unauthorized access, intellectual property theft and other security incidents. • Collect, preserve and analyze digital evidence from endpoints, servers, cloud environments and mobile devices, ensuring proper chain of custody and adherence to legal and regulatory requirements. • Perform forensic imaging and analysis of Windows, Linux, macOS, and mobile devices using industry-standard tools and methodologies. • Develop and execute scripts (Python, PowerShell) to automate evidence collection, data parsing, and artifact extraction. • Analyze logs, network traffic and large datasets to reconstruct timelines and identify root causes • Prepare detailed forensic reports and present findings to technical and non-technical stakeholders, including legal, HR, and management. • Support the development and refinement of forensic processes and playbooks • Responds to cyber incidents using industry recognized methodology, e.g., PICERL (Preparation, Identification, Containment, Eradication, Recovery and Lessons Learned). • Creates uplift of cyber security detection and alerts for ongoing prevention of threats. • Applies secure software and systems engineering practices throughout the delivery lifecycle to ensure our data and technology solutions are protected from threats and vulnerabilities. • Implements automation and orchestration for the enrichment and handling of cyber security events. • Supports vulnerability management via tools and processes and proactively identify vulnerabilities in the environment. • Assists in the planning and execution of team activities to enrich detection and prevention controls. • Participates in proactive cyber activity (purple teaming, threat hunting, red teaming, etc.) and expands awareness across all aspects of the MITRE ATT&CK framework. • Identifies critical log sources and system events used for creation and tuning of cyber security detections. • Maintains awareness of the cyber threat landscape to assist with the evaluation, enrichment and dissemination for action to protect Nationwide members and environment. • May perform other responsibilities as assigned. Requirements • Proficiency in Python or PowerShell scripting for automation and data analysis • Experience with forensic imaging and analysis tools • Strong understanding of file systems, operating systems (Windows, Linux, and macOS) • Ability to analyze and interpret large datasets • At least three years of experience in technology. • Experience in working with operating systems, networking, desktop support, application development, end point security, database management or information security. • Successful candidates will have experience configuring and using Windows and Linux/Unix operating systems. • Action oriented and ability to make decisions and recommendations. • Aptitude to build partnerships, understand business processes, and set priorities. • Solid communication skills. Nice-to-haves • Understanding of networking concepts and protocols • Exposure to cloud platforms (AWS, Azure, GCP) • Experience in digital evidence collection and preservation and forensic m
Apply tot his job
Apply To this Job