Previous Job
Security Analyst III - Incident response Analyst
Ref No.: 20-00466
Location: Phoenix, Arizona


Non-Negotiable Skills:

Previous experience in related job area (Vulnerability Management, Information Security, Identity/Access Management, IT Audit, Threat Management, Forensics/eDiscovery, Security Compliance, Policies and Standards) required.

Previous experience in IT security/system/network operations and administration or programming preferred.

Desired Soft Skills:

Organization, Prioritization, and Communication Skills.

Job Description:

Responsibilities include collecting computer evidence for legal preservation, examining electronic data and digital devices for internal investigations and assisting the Incident Response (IR) team during cyber incidents as needed.

• Proficient in investigation and legal preservation workflows that utilize forensic applications for analysis and legal preservation.

• Follows established process for common requests and issues. Determines course of action on uncommon / unique requests.

• Performs complex operational and troubleshooting tasks related to access control, provisioning requests, network & endpoint security systems, and / or Security Risk Management processes.

• Proactively identifies and escalates incidents and operational performance concerns. May act as an escalation point for other InfoSec Analysts.

• May include team-lead responsibilities.


• Provides assistance and support as requested to Security Engineering, IDM Engineering, Network Engineering, Security Risk Management and/or Information Security Ops.

• Proactively identifies and escalates incidents as well as operational performance concerns.

• Manage workload, prioritizing tasks and documenting time, and other duties as directed by management.

• Assists in Continual Service Improvement efforts by identifying opportunities for process improvement. Drives process improvement efforts in collaboration with other business units.

• Pursue continuing education to grow and maintain knowledge of best practices, compliance requirements, threats and trends in the information security, translating into operational action items, policies, procedures, standards and guidelines as part of the IT Security team

• Participate in the collection and documentation of departmental knowledge artifacts, participate in the development and population of knowledge management and collaboration systems for the IT Security team.

• Communicates technical information to team members and across the IT Organization and all management levels.

• Assists Management in identifying knowledge gaps and providing training to Analysts and Technicians in the IT Security Organization.

• Acts as subject matter expert for Risk, Compliance, HR investigations.


• Bachelor of Science degree in related field (Computer Science, Information Security, Information Systems) or equivalent combination of education and experience required.

• 4+ years of experience in related job area (forensics / eDiscovery, information security, identity / access management) required.

• Two or more relevant industry certification in security, eDiscovery, forensics (EnCE, MCFE, CCE, GCFE, COMP-TIA Network+, Security+) preferred.

• ENCEP, CEDS Certification preferred.

• Experience with forensic software: Encase, Encase eDiscovery, Axiom, BlackLight, Forensic Toolkit (FTK), Macquisition, Cellebrite UFED Physical Analyzer.

• Strong knowledge of eDiscovery review platforms and eDiscovery Reference Model (EDRM).

• Functional understanding of regulatory and compliance mandates, including but not limited to HIPAA, HITECH, PCI, Sarbanes-Oxley preferred.

• Strong knowledge of healthcare environments preferred.

• Investigation experience for Risk, HR, Compliance and Legal.

• Strong knowledge of operating systems, experience using command line and Powershell.

• Experience in Windows Office (Work, Excel, etc.) required.


• Functional understanding of regulatory and compliance mandates, including but not limited to HIPAA, HITECH, PCI, Sarbanes-Oxley preferred.

• Strong knowledge of healthcare environments preferred.
Any queries reach me on / 760-349-0078