Accenture Cyber Incident Response Team Investigator in St Louis, Missouri
Title: Cyber Incident Response Team Investigator Location: USA-Midwest Job Number: 00575874
People in the Corporate Function career track contribute to the running of Accenture as a high- performance business through specialization within a specific functional area, and grow into internally focused roles by deepening their skills and/or developing new skills within an internal functional area.
The Cyber Incident Response Team Investigations (CIRT) is primarily responsible for conducting investigations and also assisting in responding to network infrastructure events.
Conducting Investigations – Primary Responsibilities
CIRT is responsible for establishing a chain of custody for evidence, conducting necessary computer forensics, including bit stream backups of suspect media and hard drive analysis. Investigations may include embezzlement, intellectual property theft, harassment, fraud, business ethics violations, and trafficking of pornography on the Internet or Accenture's intranet. CIRT's assistance also extends to mail file reviews and e-mail tracing as needed in support of these investigations. CIRT also, on occasion, provides technical support to Human Resources and Accenture Legal & Commercial offices in conducting internal investigations.
Responding to Network Intrusions and/or Incidents – Secondary Responsibilities
CIRT is responsible for coordinating with numerous groups which could be involved in responding to intrusions, as well as conducting follow-up investigations to such incidents.
Responsibilities May Include:
Perform forensic analysis on computers, mobile devices, and other digital media
Provide computer forensic services including digital evidence preservation, data recovery, electronic mail extraction, and database examination
Interface with business function owners, legal, human resources, technical personnel, and others
Produce security incident and investigation reports/briefings
Potentially act at an expert witness at criminal/civil trails
- Must possess a recognized professional certification such as: EnCE, GCFE, GCIH, CEH or equivalent
Minimum of 2 years of cyber/computer forensic investigative experience
Experience with digital forensic analysis tools such as EnCase, Nuix, and Axiom
Knowledge of Windows desktop and server OS
Familiarity with PowerShell, Python and/or SQL
Experience with memory analysis software such as Volatility or Redline
Proficiency with PC hardware
Understanding of data networking and computer hardware
Knowledge of Mac and Linux OS
Excellent problem solving skills
Strong oral and written communication skills
Ability to multi-task and prioritize workload
Capacity to work independently and within a team environment
Detailed oriented in investigations and communications
Ability to communicate technical investigation results to non-technical functions such as HR or legal
Very strong sense of ethics/values — ability to handle confidential investigations with discretion
Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States and with Accenture.
Candidates who are currently employed by a client of Accenture or an affiliated Accenture business may not be eligible for consideration.
Accenture is an EEO and Affirmative Action Employer of Females/Minorities/Veterans/Individuals with Disabilities.
Equal Employment Opportunity
All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.
Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.
Accenture is committed to providing veteran employment opportunities to our service men and women.