Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: InfoSec Jobs - Security Intelligence Technical Investigator Fremont, CA GCFE, GCFA InfoSec Jobs


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Security Intelligence Technical Investigator
Company Tesla
Location Fremont, CA
Preferred GIAC Certifications GCFE, GCFA
Travel 20%
Salary Not provided
URL https://www.tesla.com/careers/job/security-responsetechnicalinvestigator-47564
Contact Name Anonymous
Contact Email jshumway/at/tesla.com
Expires 2019-09-21

Job Description

Role

We are looking for a motivated, professional, and focused digital investigator to help protect Tesla’s intellectual property and competitive advantage.

Tesla is a leading player in electric vehicles, autonomous driving development, energy storage, solar power, machine learning, and connected cars. Our edge is our industry-leading knowledge and the amazing people who develop these technologies. Protecting those efforts is of the utmost importance in keeping Tesla working toward our goal of accelerating the world’s transition to sustainable energy.

The Security Intelligence team is responsible for protecting Tesla’s intellectual property, responding to threats, and helping to promote the culture of security at Tesla. As a Security Intelligence Technical Investigator, you will be responsible for responding to security incidents, collecting information in a litigation-ready manner, and helping to push forward initiatives that improve Tesla’s overall security posture. You will work with teams across Tesla to identify sensitive information, help to protect it, and train employees how to better safeguard their cutting edge work.

Responsibilities

Spearhead technical efforts to increase network signal related to user activity and data access, under the direction of the Manager, Security Intelligence

As needed, conduct sound forensic examinations of electronic devices in the furtherance of investigations and company legal requests

Work closely with Security Intelligence investigators to integrate technical and human investigations into one high efficiency function

Work closely with Security Intelligence analysts to identify security threats and address gaps in information

Feed information learned from investigations back to both technical and non-technical stakeholders

Produce professional reports suitable for dissemination to senior leadership, legal counsel, and outside law enforcement detailing investigative and operational results

Partner with Legal and Human Resources and other investigative/analysis functions across the company to ensure timely completion of investigations

Advise the company on the findings of investigations and liaise with law enforcement as necessary

Conduct highly sensitive, complex, and confidential insider threat investigations into incidents of data loss and intellectual property theft, technology misuse, and conflict of interest

Conduct proactive efforts to identify, exploit, disrupt, or protect against any undermining of Tesla’s business operations

Solve complex problems with data from multiple sources and make recommendations to leadership on the appropriate strategy

Effectively communicate at all levels of the company

Requirements

Bachelor's degree required

3+ years’ experience working in cyber investigations, computer forensics, financial fraud investigations and/or other IT related fields tied to information security

Working knowledge of the following systems:
- Endpoint protection systems
- Database formats (SQL, SQLite, AGC, ODB, etc)
- Memory Analysis
- System logs from servers and network devices
- DHCP, AD, 802.1x, NAT, Web Proxy, and VPN logs
- Passive DNS
- SIEM/Log Management systems
- Encase/Blacklight/Axiom/UFED or similar
- Scripting (Bash/Powershell/Python or similar)

Independently leverage technical tools and techniques to conduct and support Security Intelligence investigations

Analyze complex data sets to detect patterns and anomalies

Quickly learn and implement new technologies to further organizational goals

Experience in conducting and overseeing complex, global, investigations is preferred

Demonstrated knowledge of corporate investigation strategies utilizing technical forensic capabilities and data

Experience investigating complex technical security incidents, highly sensitive employee matters, and insider threat assessment and management is required

Demonstrated experience of regular communication at executive level within a global corporate environment

Proven track record managing multiple complex projects simultaneously, and focusing on critical priorities with little or no supervision

Approximately 10-30% global travel required

Knowledge of E-Discovery and chain of custody best practices and techniques