Forensic/Insider Threat – Security Technical Spec (Sr. or Lead)

About the job

Job Description

Roles and Responsibilities

The Security Technical Specialist (Senior or Lead) will be a member of the Insider Protection and Prevention Program (IP3) team. This position will require a deep technical knowledge in various cyber and physical security related domains. Employees in this role solve complex problems and operate with a high degree of independence and trust. The position will be accountable for insider threat detection, analysis, and response; digital forensic collections, investigations, and analysis; threat rule catalog support; and incident response support.

Primary Responsibilities Include

  • Insider threat detection, analysis, and response
  • Maturity and growth of Insider Protection and Prevention Program objectives
  • User and Entity Behavior Analytics (UEBA) anomaly monitoring/investigation and rule maintenance
  • HR/Ethics/Legal investigations
  • Law Enforcement or Government investigation initiation or assistance
  • Data Loss Prevention (DLP) investigation support
  • Intelligence gathering and analysis
  • Digital forensic Investigations, mobile forensics, and eDiscovery support
  • Forensics and eDiscovery tool management and administration
  • Rule development, tuning, and cataloging
  • Incident response support

Preferred Skills

  • Advanced level of understanding and hands on experience in Digital Forensics and Cyber Incident Response
  • Experience with Counterintelligence or an understanding of foreign intelligence entities, or international threat organizations and associated Tactics Techniques and Procedures used to carry out objectives.
  • Knowledge of behavioral analytics, detection techniques and how it applies to insider threat detection
  • Understanding of state sponsored espionage and human behavioral indicators related to insider threats
  • Experience performing host based and mobile forensics on various Operating Systems (Windows, Mac, Linux, iOS, Android)
  • Ability and expertise performing open-source intelligence research and data mining
  • Understanding of various Physical Security protocols and job functions
  • Knowledge of various security and IT concepts (eg. digital evidence, hardware, networking, logging, cloud, active directory)
  • Ability to use tools and correlate/interpret disparate data sources to include system logs, network traffic or various security tool outputs
  • Excellent interpersonal, communication, and report writing skills with the ability to translate analysis and findings to a format that is consumable by various business units and degrees of technical understanding or testimony in court
  • Desire and passion to build processes and procedures to further enhance IP3
  • Strong work ethic, positive attitude, trustworthy, passion for security, and motivation to dive deep into data points and conduct analysis to problem solve and provide solutions
  • Industry standard certifications such as GCFE, GCFA, GCIH, GMOB, ITPM, etc.
  • Ability to obtain a U.S. Government Security Clearance

Job Type

Full-Time

Relocation

No

Minimum Requirements

NOTE: This position will be filled at the experience and salary grade level commensurate with the qualifications and experience of the selected candidate as compared to the minimum requirements stated below.

This position operates with a high degree of independence and is considered a remote position with occasional on-call. Some travel may be required to AEP Headquarters (1 Riverside Plaza) in Columbus Ohio or various field locations to perform tasks determined by the specific investigation needs. This position requires an understanding and ability to properly handle AEP Confidential and/or legally Privileged information. Employees may also be required to sign Non Disclosure Agreements.

Security Technical Spec. Sr.

Education

  • Bachelors degree in computer science/cyber or related field;
  • Or Associate’s degree with 2 years of IT system administration/help desk work experience;
  • or high school diploma/GED with 4 years IT system administration/help desk work experience;
  • or graduation from an approved cyber security program; alternatively may have non-degree qualifications (such as hands-on demonstrated ability in a technical interview/assessment);

Experience

  • 4 or more years of Information Technology related experience;
  • or 2 or more years of cyber related military/government work experience (in addition to any experience identified above).

Education

Security Technical Spec. Lead:

  • Bachelors degree in computer science/cyber or related field;
  • or Associate’s degree with 2 years of IT system administration/help desk work experience;
  • or high school diploma/GED with 4 years IT system administration/help desk work experience;
  • or graduation from an approved cyber security program; alternatively may have non-degree qualifications (such as hands-on demonstrated ability in a technical interview/assessment);

Experience

  • 7 or more years of Information Technology related experience;
  • or 5 or more years of cyber related military/government work experience (in addition to any experience identified above).

Work Designation

Remote

More Information

Apply for this job

Leave your thoughts

Share this job

AEP

(0)