For Recruiters

Cyber Security - Forensic Analyst

CME
United States, Chicago
Posted about 4 hours ago Permanent Competitive
Cyber Security - Forensic Analyst
Description
Description

The Cyber Security Analyst III (Forensics/Response) role is a technical position within CME Group's Cyber Defense Team. In this role, the analyst will be both a member of the Incident Response Team, as well as a subject matter expert in digital forensics. The analyst will lead Investigations of corporate security breaches, network intrusions, unauthorized access or use of systems, employee compliance and policy violations, intellectual property theft, employee misconduct/threats, etc. The analyst will work closely with groups such as Legal, Human Resources, etc. to provide guidance and support for investigation, forensic and e-Discovery requests.

Primary Responsibilities:
  • Forensics
    • Conduct investigations on data breach and security incidents.
    • Retrieve and examine data from computers, mobile devices and electronic storage devices.
    • Memory Forensics analysis
    • Identify additional systems/networks compromised by cyber-attacks.
    • Draft technical reports, write declarations and prepare evidence for responsible party.
    • Test forensic tools for accuracy and identify useful artifacts that may not be supported by an existing tool.
    • Proficiency using tools such as X-Ways, EnCase Enterprise, and AXIOM
  • Incident Response
    • Act as lead incident handler for low and medium severity incidents and assist with analysis of high severity incidents.
    • Perform technical analysis of multiple sources of data, including network flows/packet data, host forensic artifacts, and application/system logs.
    • Analyze logs from SIEMs and other sources and be able to identify unauthorized activity.
    • Perform traffic and host analysis during an incident investigation.
    • Use security tools including IDS, IPS, firewalls, proxies, Web Application Firewall (WAF), etc., to triage events that may lead to incidents.
    • Proficiency analyzing high volumes of logs, network data (e.g. NetFlow, Full Packet Capture), and other event/incident artifacts using SPLUNK and Logger in support of incident investigations.
    • Manage incident communications, including establishing/scheduling bridge lines and periodic incident update calls.
    • Document incident tasks and updates in the incident management system.
    • Assist with training and mentoring of junior incident responders.

Personal Attributes:
  • Strong customer-service orientation.
  • Strong analytical and troubleshooting skills
  • High level critical thinking skills.
  • Excellent written and oral communication skills.
  • Excellent listening and interpersonal skills.
  • Ability to communicate ideas in both technical and user-friendly language.
  • Ability to conduct research into network/security issues and products.
  • Comfortable working in a dynamic environment with multiple goals.
  • Highly self-motivated and directed, with keen attention to detail.
  • Able to prioritize and execute tasks in a high-pressure environment.
  • Experience working in a team-oriented, collaborative environment.
  • Ability to deal diplomatically and effectively at all levels of the organization including both technical and non-technical, management and senior leadership

Professional Experience:
  • 3 - 5 years of experience in Forensics or Information Security is typical for this position.
  • Successful candidates should be able to demonstrate a passion for information security through course work/degrees completed, self-study, and/or certifications that have been completed.

Formal Education & Certifications
  • BA/BS in Engineering, Computer Science, Information Security, or Information Systems or related work experience
  • Certifications such as SANS GCFE, GCFA, GNFA, or related knowledge/experience are desired.

#LI-Hybrid #LI-JW1

CME Group: Where Futures Are Made

CME Group (www.cmegroup.com) is the world's leading derivatives marketplace. But who we are goes deeper than that. Here, you can impact markets worldwide. Transform industries. And build a career shaping tomorrow. We invest in your success and you own it, all while working alongside a team of leading experts who inspire you in ways big and small. Joining our company gives you the opportunity to make a difference in global financial markets every day, whether you work on our industry-leading technology and risk management services, our benchmark products or in a corporate services area that helps us serve our customers better. With 3,500 employees located around the world, we're small enough for you and your contributions to be known. But big enough for your ideas to make an impact. The pace is dynamic, the work is unlike any other firm in the business, and the possibilities are endless. Problem solvers, difference makers, trailblazers. Those are our people. And we're looking for more.

This position requires that you be fully vaccinated against COVID-19 by the date of hire. Proof of vaccination will be required as a condition of employment. CME Group complies with federal, state and local laws with respect to providing accommodations for individuals who are unable to receive the vaccine due to a medical condition or religious belief.

For EU Residents, the Candidate Privacy Policy can be found here.
Job ID  8926817
More jobs From CME
CME
Senior Cyber Security Engineer - EndPoint Protection
CME
USA, Chicago
2 days ago Full time Competitive
CME
Information Security - Risk Management/Cyber Exercise Program Internship
CME
USA, Chicago
2 days ago Full time Competitive
CME
Cyber Security Response Analyst
CME
United Kingdom, Belfast
2 days ago Full time Competitive
CME
Manager - Insider Threat Program
CME
USA, Chicago
2 days ago Full time Competitive
CME
Cyber Defense Analyst III-Content and Automation
CME
United Kingdom, Belfast
about 4 hours ago Full time Competitive
CME
Cyber Defense Analyst III - CAT
CME
United Kingdom, Belfast
2 days ago Full time Competitive
CME
Manager Cyber Defense - Insider Threat
CME
USA, New York
2 days ago Full time Competitive
CME
Lead Software Engineer
CME
USA, Chicago
about 4 hours ago Full time Competitive
CME
Lead Software Engineer, Globex
CME
USA, Chicago
about 4 hours ago Full time Competitive
CME
Software Engineer
CME
USA, Chicago
about 4 hours ago Full time Competitive