南京招聘

Key responsibilities:

· Analyze network logs, application logs, computer systems, file metadata and malicious code to identify scope and timeline of system or network compromise.

· Evaluate malicious activity on networks assets and mitigate threats using a variety of digital forensic and incident response tool, processes, and techniques.

· Research/develop/test new tools to speed up or automate investigation methods that may be encountered during an investigation.

· Perform and supervise remote and onsite digital evidence collections and forensic analysis tasks through the use of industry standard hardware and software applications.

· Plan and conduct information security reviews (focus on incident response readiness) using relevant cyber security standards, such as: ISO 270001, NIST cybersecurity framework, CIS controls, PCI DSS.

· Work effectively as a team leader;

· Prepare working papers, schedules and reports that will be delivered to our clients and other parties.

Qualifications, Education and Certification

To qualify, candidates must have:

· Bachelor's degree in computer science, information systems, engineering, or a related discipline and/or a professional certification, e.g., CISSP, GCIH, GCFE, GCFA, GCIA.

· 5years or more working experience in digital forensic investigation or incident response.

· Solid scripting or programming language, such as: python, powershell, ruby, batch, c, c++.

· IT administration knowledge as well as hands-on computer hardware knowledge.

· Good command of spoken and written English and Mandarin.

· Travelling is required.

Preferred experience:

· Network forensics (packet analysis, sniffers, examination of suspect ports and services, etc) and log analysis.

· Host and network IDS/IPS platform experience

· Malware analysis (file, memory, behavioral) on Windows and Linux systems, experience with mobile devices would be of great benefit.

· Malware monitoring experience

· Understanding of programming languages, assembly, debuggers /compilers /dissemblers to analyze suspect code and bypass obfuscation.

· System, file, and memory analysis tools experience

· Memory forensics tools experience

Welcome to EY
At EY, our 175,000 professionals work together to deliver assurance, tax, transaction and consulting services. We are united by our shared values and an unwavering commitment to quality.

Working at EY
We are a global professional services organization that provides a broad array of assurance, tax, transactions and advisory services.
We are committed to doing our part in building a better working world for our people, for our clients and for our communities, and we are united by our shared values and a dedication to delivering exceptional client service.

Lifelong relationships at EY
We want you to gain more career value from your time spent with EY than you would from any other employer. This is why we work hard to build and sustain the kind of culture that provides a wide array of learning and development opportunities, gives you experience of working with a diverse group of colleagues and clients, and provides the chance to build lifelong relationships that will be valuable to you wherever your career takes you.

Whenever you join, however long you stay, the exceptional EY experience lasts a lifetime.