Zurich NA Jobs


Job Information

Zurich NA Digital Forensics Incident Response Consultant in Los Angeles, California

Digital Forensics Incident Response Consultant


Zurich North America is seeking a Digital Forensics Incient Response Consultantto join the Speartip office in St Louis, MO (hybrid 1 day/week in the office). We will also consider qualified candidates to work virtually within the US.

This role joins the cybersecurity consulting segment within Zurich Resilience Solutions. In this role you will scope and conduct Digital Forensics and Incident Response investigations related to security breaches such as Ransomware, Business Email Compromise, and other cybersecurity related investigations. With limited supervision, collect digital evidence in a forensically sound manner. determine root cause of cyber incidents, method of threat actor intrusion, scope of incident, and assist our client with guidance on recovery steps after an incident occurs. You will provide updates to Legal, Insurance, and Client partners as appropriate, and prepare technical reports of your findings.

The role will be filled at the Digital Forensics I ncident Response Consultant or Specialist level. The hiring manager will determine the appropriate level based upon the selected applicant’s experience and skill set relative to the qualifications listed for this position.

Required Qualifications

Digital Forensics Incident Response Specialist:

• Bachelors degree and 3 or more years experience in the information technology area


• Zurich Cybersecurity Technician Apprentice, including Cyber Security Certification and 4 or more years experience in the in formation technology area


• High School Diploma or Equivalent and 5 or more years experience in the information technology area


• MS Office experience

• Experience leading Digital Foensics Incident Response investigations

Digital Forensics Incident Response Consultant:

• Bachelors degree and 5 or more years experience in the Information Technology area


• Zurich Cybersecurity Technician Apprentice, including Cyber Security Certification and 6 or more years experience in the Information Technology area


• High School Diploma or Equivalent and 7 or more years experience in the Information Technology area


• MS Office experience

• Experience leading Digital Foensics Incident Response investigations

• Knowledge of Cyber Security Operations

Preferred Qualifications

• Knowledge of cyber information security functions (Application Security, Threat Defense, Vulnerability Management, Threat Intelligence)

• Strong analytical and customer service skills

• Strong verbal and written communication skills

• Industry certifications such as, but not limited to: A+, Network+, Server+, Security+, CyberSecurity Analyst+, Penetration Tester+, PMP, CRISC, CEH, Security+, Comptia SEC+, GIAC, GCFA, GCIH, GCFE, CFCE, MCFE,CISSP, CISM, CISA

• SOC Analyst, application security, vulnerability management and/or threat intelligence experience

• Experience with commercial and open source Digital Forensics tools, such as X-Ways, Magnet Axiom or Axiom Cyber, EnCase, KAPE, SIFT, FTK Imager and other DFIR toolsets

• Experience with Log Analysis and SIEM

• Experience in evidence acquisition and analysis from a variety of sources, such as endpoints, cloud platforms (MS Azure, Google Cloud Platform, AWS), servers and mobile devices

• Experience with memory and malware analysis

• Powershell or other scripting experience

• Windows, Mac, and/or Linux file system analysis

• A Bachelors Degree in Information Security, Information Technology, Computer Science, Information Systems or a related degree program with an emphasis on cybersecurity

• Ability to assess risks associated with Cybersecurity across various industries and develop insightful reports

•Expertise with cybersecurity assessment frameworks such as the NIST Cyber Security Framework, MITRE ATT&CK, ISO 27001, COBiT, and other relevant industry-specific frameworks

•Experience with project management skills and techniques

•Motivation to self-educate and to be aware of current threats, hacker techniques and risk mitigation tactics

•Ability to train other technical and non-technical audiences on cybersecurity assessment techniques

•Able to present in front of large audiences

•Ability to develop proposals, negotiate fees, and secure professional service contracts with customers

As a condition of employment at Zurich, employees must adhere to any COVID-related health and safety protocols in place at that time ( https://www.zurichna.com/careers/faq ).

A future with Zurich. What can go right when you apply at Zurich?

Now is the time to move forward and make a difference. At Zurich, we want you to share your unique perspectives, experiences and ideas so we can grow and drive sustainable change together. As part of a leading global organization, Zurich North America has over 150 years of experience managing risk and supporting resilience. Today, Zurich North America is a leading provider of commercial property-casualty insurance solutions and a wide range of risk management products and services for businesses and individuals. We serve more than 25 industries, from agriculture to technology, and we insure 90% of the Fortune 500®. Our growth strategy is not limited to our business. As an employer, we strive to provide ongoing career development opportunities, and we foster an environment where voices are diverse, behaviors are inclusive, actions drive equity, and our people feel a sense of belonging. Be a part of the next evolution of the insurance industry. Join us in building a brighter future for our colleagues, our customers and the communities we serve. Zurich maintains a comprehensive employee benefits package for employees as well as eligible dependents and competitive compensation. Please clickhere (https://www.zurichna.com/careers) to learn more.

As a global company, Zurich recognizes the diversity of our workforce as an asset. We recruit talented people from a variety of backgrounds with unique perspectives that are truly welcome here. Taken together, diversity and inclusion bring us closer to our common goal: exceeding our customers’ expectations. Zurich does not discriminate on the basis of age, race, ethnicity, color, religion, sex, sexual orientation, gender expression, national origin, disability, protected veteran status or any other legally protected status. EOE disability/vet

Zurich does not accept unsolicited resumes from search firms or employment agencies. Any unsolicited resume will become the property of Zurich American Insurance. If you are a preferred vendor, please use our Recruiting Agency Portal for resume submission.

Location(s): AM - St. Louis, AM - New York, AM - Remote Work (US), AM - Overland Park, AM - Chicago, AM - San Francisco, AM - Los Angeles, AM - Missouri Virtual Office, AM - Washington DC, AM - Washington St Virt. Office, AM - Minneapolis, AM - Milwaukee

Remote Working: Hybrid

Schedule: Full Time

Employment Sponsorship Offered: No

Linkedin Recruiter Tag: #LI-AW1 #LI-ASSOCIATE