eDiscovery & Forensic Security Engineer

Job Description

eDiscovery and Forensics Security Engineer

As Discovery's portfolio continues to grow - around the world and across platforms - the Global Technology & Operations team is building media technology and IT systems that meet the world-class standard for which Discovery is known. GT&O builds, implements and maintains the business systems and technology that are critical for delivering Discovery's products while articulating the long-term technology strategy that will enable Discovery's growing pay-TV, digital terrestrial, free-to-air and online services to reach more audiences on more platforms.

From Amsterdam to Singapore and from satellite and broadcast operations, we are driving Discovery forward on the leading edge of technology.

Key Areas of Responsibility

Discovery's Information Security department is seeking an eDiscovery and Forensic Security Engineer to provide experienced digital forensics support, technology, and subject matter expertise to the Discovery electronic discovery and digital forensics team. The eDiscovery and Forensics Security Engineer engages closely with the legal department in their secure preservation, creation, management, and delivery of Discovery requests across the globe. Initiates and manages the forensic data collection process in support of the forensic investigation for assigned engagements. Lead forensic update calls to ensure accurate updates are conveyed as they relate to investigations.

The eDiscovery and Forensics Security Engineer specializes in preservation, collection, and analysis of electronically stored information, and supporting legal requests for support to closure, focusing on projects from a global program perspective. The position will report to the Director of eDiscovery and Digital Forensics, supporting Discovery legal, ethics, internal audit, employment, privacy, and information security teams. The role is a broad ranging, requiring a brilliant individual with an eye for detail and the ability to engage dynamic teams on a global level.

You will work with the program management teams to address issues as required. Review, prioritize & deliver operations improvement opportunities across the spectrum of the electronic discovery reference model. Maintain detailed and accurate evaluation notes for issue tracking and process improvements.
You will play a dynamic role in helping us meet our litigation support and incident response goals while protecting our high-quality customer experience. Work closely with the Global Information Security team to triage, address, and resolve security issues. Audit assumptions and drive change with analysis and decision-making input.

As the eDiscovery and Forensics Security Engineer on the Investigations team you will be engaging from the beginning stage of responding to security incidents, providing hands on investigations, forensics, and response expertise, and helping to craft security investigations at Discovery. You will also partner closely with the security analysts and incident commanders, leading incident investigations and providing mentorship to analysts. You will provide technical expertise for tools made available to the team and shared with internal teams assisting with on-site or remote collection of electronic data. You will generally assist direct to consumer, and content security efforts. Able to communicate at a technical level with technical professionals and can cut through the jargon to discuss complex concepts to non-technical professionals.
Other Responsibilities
• Expert knowledge of electronic discovery and forensic principles

• Assist with key components of the eDiscovery and Forensics Collection Workflow in partnership with IT and Legal departments

• Ability to manage assigned digital forensic efforts in support of eDiscovery requests, staff investigations and enterprise computer security incident response including but not limited to internal and external intellectual property theft, attacks/intrusions, computer abuse and insider threat investigations

• Possess skills to collect, process, preserve and analyse data from electronic data sources, including laptop and desktop computers, servers, and mobile devices per company policies and practices

• Maintain full Chain of Custody and evidence tracking

• Expert ability to perform log, memory and RAW analysis

• Ability to follow through on leads until all possible avenues in investigating a case have been exhausted

• Liaise with the Legal department and produce high quality oral and written work product presenting complex technical matters clearly and concisely; organizing all relevant case information in easy-to-understand format

• Proficiency in electronic discovery with the Guidance EnCase platform, industry standard tools and practices applying technical and functional skills

• Keep abreast of current best-practices, emerging technologies, and solutions in the context of eDiscovery and Legal Hold

Requirements:
• BA or BS in Computer Science, Information Technology or related field

• Subject Matter Expert on the Open Text EnCase platform

• Minimum six (6) years of experience in computer system and TCP/IP network forensics

• Experience with Unix, Linux, Windows, Mac OS X, iOS and Android operating systems

• Reading and interpreting PCAP and other network forensic data

• Experience with EnCase, FTK, X-Ways or Other Computer Forensic Tools

• Digital Forensic and Incident Response Certifications such as GCFE, GCFA, CHFI, CCE, CFC, EnCE, CFCE, CEH, CISSP, CND, eDiscovery certificate a plus

• Demonstrated skill in performing post-incident computer forensics without destruction of critical data

• Ability to act as full-time on-call for escalation of a cyber security incident and forensic response

• Experience with all imaging types and methods

• Experience in forensic analysis of compromised systems

• Knowledge of policies and procedures regarding chain of custody practice

• Knowledge of proper forensic investigation techniques when working with compromised system images or files

• Detailed knowledge of litigation and related discovery processes

• Technical Report Writing Experience

• Work well as a member of a cross-functional team

• Must have strong initiative and critical thinking skills

• Strong interpersonal skills

• Ability to show judgment and initiative and to accomplish job duties

• Ability to make decisions and solve problems while working under pressure

• Consistently improves team results by taking initiative and assuming more responsibility
* Must have the legal right to work in the US

Discovery Inc. is an equal opportunity employer. Discovery is committed to being an employer of choice, not just a good place to work, but a great and inclusive place to work. To that end, we strive to recruit and maintain a workforce that meaningfully represents the diverse and culturally rich communities that we serve. Qualified applicants will receive consideration for employment without regard to their race, color, religion, national origin, sex, sexual orientation, gender identity, protected veteran status or disabled status or, genetic information.

EEO is the Law

Pay Transparency Policy Statement

If you are an individual with a disability and need an accommodation during the application process, please send an email request to HR@discovery.com.

Nearest Major Market: Washington DC

Jobcode: Reference SBJ-roqyw2-3-138-69-45-42 in your application.