Act as the first responder for cyber‑security incidents identified through different channels, Human Resources, Employee Relations, Corporate Investigations, ASOC, Infrastructure CIRT, and client escalations.
Investigate cases such as, but not limited to:
Acceptable Use Policy / Code of Business Ethics Violation
Execute documented processes within all activities of the CIRT playbook and security incident response lifecycle. Escalate security events, depending on determined crisis levels, to management in accordance with the incident response plan.
Collect, preserve and process volatile information and evidences needed to conduct highly confidential forensic investigations. Investigation of digital evidences may include: