Lead, Digital Forensics and Incident Response (Information Technology)

Job Classification:

Technology - Information Security

Are you interested in building capabilities that enable the organization with innovation, speed, agility, scalability and efficiency? The Global Technology team takes great pride in our culture where digital transformation is built into our DNA! When you join our organization at Prudential, you'll unlock an exciting and impactful career – all while growing your skills and advancing your profession at one of the world's leading financial services institutions.

Your Team & Role

As a Lead, Digital Forensics & Incident Response on the Cyber Defense and Response (CDR) team, you will be responsible for incident response and investigations in Asia, Europe and the Americas. This is an exciting time to join a growing team. The CDR team is seeking an experienced individual for the position of Digital Forensics & Incident Response Lead.

The Digital Forensics & Incident Response Lead will serve as an individual technical contributor, responsible for conducting digital forensic and incident response analysis, responding to security incidents, assisting with threat hunting operations, performing incident readiness activities, and completing other related cybersecurity tasks as required in a highly dynamic global corporate environment.

You will work on extremely complex problems in which analysis of situations or data requires an evaluation of intangible variables. You will exercise independent judgment in developing methods, techniques and evaluation criteria for obtaining results to delight our customers! In addition to advanced technical expertise and experience, you will bring excellent problem solving, communication and teamwork skills, along with agile ways of working, strong business insight, an inclusive leadership attitude and a continuous learning focus to all that you do.

Here is What You Can Expect on a Typical Day

• Responsible for Digital Forensics and Incident Response quality control - ensure peer and supervisory review of investigative findings.

• Responsible for distinct control function escalations such as those originating from data loss prevention (DLP) team, Employee Relations, and CSOC.

• Manage projects related to DFIR readiness such as integration into new BU processes, new technology and incident readiness, and introduction of resiliency improvements.

• Investigative case management to include formal documentation, reporting, chain of custody, and evidence disposition.

• Risk management of information security, technology risk, and non-technical areas such as legal, fraud, privacy, and reputation risk.

• Identify process and resiliency improvement areas; propose changes

• Bring a strong understanding of relevant and emerging technologies, provide input and coach team members, and embed learning and innovation in the day-to-day

The Skills & Expertise You Bring

• Bachelor of Computer Science or Engineering or experience in related fields

• Ability to coach others with minimal guidance and effectively leverage diverse ideas, experiences, thoughts and perspectives to the benefit of the organization

• Experience with agile development methodologies and Test-Driven Development (TDD)

• Knowledge of business concepts tools and processes that are needed for making sound decisions in the context of the company's business

• Ability to learn new skills and knowledge on an on-going basis through self-initiative and tackling challenges

• Excellent problem solving, communication and collaboration skills

Advanced experience and/or expertise with several of the following:

• Proven experience responding to cyber incidents in large corporate/enterprise environments.

• Experience with enterprise technologies such as Active Directory/Entra, O365, Azure, AWS, etc.

• Advanced experience using Splunk's Search Processing Language (SPL) and Microsoft's Kusto Query Language (KQL).

• Knowledge of common scripting languages (Python, PowerShell, Bash, etc.)

• Experience using forensic software suites (X-Ways, EnCase, etc.).

• Experience performing host, log, memory, and network-based forensics.

• Experience performing malware analysis in support of incident response activities.

• Comprehensive understanding of adversarial threat frameworks such as MITRE ATT&CK and Lockheed Martin's Cyber Kill Chain.

• Industry standard certifications (CCE, EnCE, GCFE, GCFA, GCIH, GREM, GNFA, GPEN, etc.)

What we offer you:

Prudential is required by state specific laws to include the salary range for this role when hiring a resident in applicable locations. The salary range for this role is from $128,100.00 to $190,700.00. Specific pricing for the role may vary within the above range based on many factors including geographic location, candidate experience, and skills.

• Market competitive base salaries, with a yearly bonus potential at every level. 

• Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave. 

• 401(k) plan with company match (up to 4%). 

• Company-funded pension plan. 

• Wellness Programs including up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs. 

• Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.  

• Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.  

• Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service. 

Eligibility to participate in a discretionary annual incentive program is subject to the rules governing the program, whereby an award, if any, depends on various factors including, without limitation, individual and organizational performance. To find out more about our Total Rewards package, visit Work Life Balance | Prudential Careers. Some of the above benefits may not apply to part-time employees scheduled to work less than 20 hours per week.