Your Mission: As a vital member of the IT Security Team / Blue Team (Incident Response domain), you will play a crucial role in providing organizational and technical expertise in Digital (Cyber) Forensics. Your responsibilities will include defining, implementing, and executing the Cyber Forensic Readiness project within the framework of the Cyber Resilience Program.
Your responsibilities
Collaborate with security teams, technical teams, legal teams, and application owners to understand case requirements and develop a comprehensive Digital Forensic strategy aligned with organizational security objectives
Analyze organizational needs and define relevant use cases and incident scenarios related to legal forensics
Design and integrate forensic processes into cybersecurity activities, including monitoring and incident response
Develop procedures for the collection, preservation, and analysis of digital evidence
Evaluate market tools and services, recommending and implementing solutions tailored to organizational needs and environments
Provide training to stakeholders, including end users and Level 1 operators, to ensure the integrity of digital evidence
Produce detailed documentation, including operational procedures and required policies
Validate and refine forensic methodologies, ensuring optimal tooling and processes for digital evidence preservation
Test and validate the implementation of forensic tools and processes
Participate in public RFP processes to acquire tools, Hardware, or services to support forensic requirements
Communicate complex technical findings clearly and effectively to non-technical stakeholders
Your profile
Mandatory: Proven expertise and experience in Digital (Cyber) Forensics tools and methodologies
Hands-on experience with forensic tools such as EnCase, FTK, and Sleuth Kit
Strong understanding of cybersecurity principles and best practices
Excellent communication and interpersonal skills for effective collaboration with cross-functional teams
Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Cyber Forensics Professional (CCFP), EnCase Certified Examiner (Ence), or GIAC Dfir certifications are highly desirable
Fluency in both English and French (written and spoken) is mandatory. Proficiency in Luxembourgish or German is considered an asset