Principal Digital Forensics Investigator, Digital Forensics

2日前

Tokyo Rakuten Mobile Full time

Description

:

About Organization

Cyber Defense Operations department is responsible to protect RMI's information systems, telco networks, and data from cyber threats. This involves detecting, responding to, and mitigating cyber attacks in real-time to minimize damage and maintain the confidentiality, integrity, and availability of critical assets.

Job duties

We are seeking an experienced forensics expert to join our Digital Forensic and Incident Response team. As a member of our elite Global Cyber Security team in Japan, you will provide guidance and support to Rakuten technology teams in designing and implementing security architectures and controls.

Responsibilities

  • Conduct security triage and forensic analysis of compromised systems, including Windows, various Linux distributions, and Mac.
  • Perform memory forensics and malware analysis to support investigations.
  • Develop and maintain an IR tool stack for automated forensic artifact collection and analysis.
  • Create and update incident preparedness documentation, including response plans and runbooks.
  • Respond to hacking incidents, including occasional nights and weekends.
  • Prepare and present incident investigation reports on a regular basis.
  • Collaborate with internal stakeholders on security incident response, including gaining access to systems, collecting digital forensic artifacts, containment, and remediation.
  • Work with the Security Operations team to implement innovative monitoring strategies.

    • Minimum Qualification

  • Bachelor's degree in Computer Science or a related field
  • 3+ years of work experience in Digital Forensics and Incident Response (DFIR)
  • Proficiency with at least one forensic tool: EnCase, Axiom, or Cellebrite
  • Good understanding of data collection and preservation principles
  • Expert knowledge of Linux security
  • Deep experience with scripting in at least one language: Go, Python, or Bash

    • Preferred Qualification

  • Demonstrated experience in Cloud Security with GCP, AWS, and Azure
  • Knowledge of Containerization, Kubernetes, and Docker
  • Experience in responding to incidents in a Container environment
  • Experience in the Telecom industry
  • Excellent communication skills in English; Japanese language proficiency is a plus

    • Languages:

    English (Overall - 3 - Advanced), Japanese (Overall - 1 - Beginner)

    • Senior Incident Response Consultant

      1日前

      Tokyo Dell Full time

      Secureworks (NASDAQ: SCWX) a global cybersecurity leader, enables our customers and partners to outpace and outmaneuver adversaries with more precision, so they can rapidly adapt and respond to market forces to meet their business needs. With a unique combination of cloud-native, ...

    • Cyber Defense Operations Manager, Security Operations Center Section

      5日前

      Tokyo Rakuten Mobile Full time

      Description · : About Organization · Cyber Defense Operations Department is responsible to protect RMI's information systems, telco networks, and data from cyber threats. This involves detecting, responding to, and mitigating cyber attacks in real-time to minimize damage and m ...

    • Cybersecurity Advisor

      5日前

      Tokyo Rapid7 Full time

      Rapid7 Cybersecurity Advisors partner with our customers above and beyond the tactical aspects of vulnerability management, application security, and threat detection and incident response. · You will work with your customers to increase their resilience against threats through ...

    • Digital Trust Business Development Exective

      7日前

      Yokohama BSI フルタイム

      Great that you're thinking about a career with BSI · Overview / Purpose of the position · 事業開発デジタル担当としてDigital Trust分野に関し新サービスの開発、国内における関連規格のローカライズ、市場の開拓等市場の開拓等総合的な事業開発を行う。 · 上記により新たな市場/顧客の創出、ビジネス手法の獲得、BSIのビジネスの成長を担当領域の職責において主導し、結果として中長期的な売上・利益、およびBSIの発展に寄与し、BSIのブランドを維持する責任を有する。 ...