252901 - Digital Forensics Specialist Collects and analyzes digital evidences and investigates cybersecurity incidents to derive useful information to mitigate system and network vulnerabilities
Main Tasks:
Study and analyze digital evidences and maintain chain of custody
Identify digital evidences for examination and analysis when dealing with cyber incidents
Perform incident response tasks to support incident response teams including forensics collection, intrusion correlation, tracking, threat analysis and system remediation
Draw conclusions from digital forensics processes and make recommendations about cyber incidents and ways to address vulnerabilities
Analyze files and timeline of events and logs for systems and networks
Educational Level:
Educational Field:
Database and network design and administration
Software and applications development and analysis
Skills:
Effective communication with individuals and leaders
Technical skills:
Knowledge of methodologies for collecting and analyzing digital evidences, its packaging, transfer and storage, while maintaining evidences’ chain of custody.
Skill in identifying and extracting data that is important for digital forensics analysis activities in diverse media.
Knowledge of the systems and networks files, and historical records that contain useful information for digital forensics analysis and cyber incident response activities.
Knowledge of tools for analyzing and preserving digital evidences and the skill to use them.
Knowledge of the techniques and procedures used against digital forensics analysis activities.
