Empower digital safety through forensic analysis in our cybersecurity team.

As a Digital Forensics Senior Associate in Cybersecurity & Tech Controls, you play a key role in protecting the firm's digital assets using your advanced analytical, technical, and problem-solving skills to collect, preserve, and analyze digital evidence. Working across lines of business, you help manage complex cybersecurity incidents by identifying gaps and making strategic recommendations. Your expertise in digital forensics, cybersecurity operations, and threat intelligence is vital to the firm's risk reduction efforts. Staying ahead of emerging technologies and engaging in forensic research and development projects, you contribute to maintaining a secure digital environment at JPMorgan Chase.

Job responsibilities

Use digital forensic tools and techniques to gather, preserve, and analyze evidence from various sources to support internal employee investigations and cybersecurity incident response Conduct detailed analysis of systems where breaches of critical IT infrastructure may have occurred and provide root cause analysis, impact assessments and rapid response to aid detection of those responsible and make recommendations to assist prevention of similar incidents Use host-based and network forensic capabilities to develop information regarding threat actor and malware IOCs and TTPs which in partnership with other cybersecurity operations teams can be used to pinpoint vulnerabilities, bolster security, and proactively mitigate potential risks Demonstrate strong written and verbal communication skills necessary to effectively interpret investigative requirements, provide technical guidance, and provide detailed documentation of analysis findings Develop and implement innovative forensic research and development projects to stay ahead of emerging technologies and enhance cybersecurity posture Define and execute procedures for identifying, managing, collecting, preserving, analyzing, and documenting findings Develop and implement digital-forensics and data-protection security solutions and standards, adhering to industry best practices

Required qualifications, capabilities, and skills

Bachelor’s Degree in Computer Science, Cybersecurity, Data Science, or related disciplines 3+ years in digital forensics and incident response, or a similar cybersecurity operations role Working knowledge of digital forensic best practices and industry standard methodologies for investigating host-based and network analysis. Experience with investigating data compromise events, networking protocols and packet analysis, and working with industry standard tools (X-Ways, EnCase, Volatility, Rekall, Wireshark, SIFT, Cellebrite, etc.) A proven track record in live digital forensics, log-file analysis and network forensics Ability to work independently and/or with a team to conduct forensic examinations Strong attention to detail in conducting forensic analysis combined with an ability to articulate and visually present complex forensic investigation and analysis results Demonstrated proficiency in scripting languages like Python, Bash, JavaScript, or PowerShell for automation and data analysis

Preferred qualifications, capabilities, and skills

Hands-on experience with public cloud digital forensics and incident response Industry standard digital forensics certifications (GCFA, GNFA, GCFE, CFCE, etc.) Industry standard information security technology certifications (GCIH, GREM, etc.)