Come join us!
Position Purpose & Summary
Cargill is seeking a Senior Forensic Analyst to guide our growing Insider Threat program. This is a new role at Cargill that will focus on investigations related to Insider threats as well as the development of proactive solutions that reduce the risk that this phenomenon brings. As part of the Forensics and Electronic Discovery Team within Global IT, you will be helping shape the Insider Threat awareness and response program from the ground up.
This position requires determination and an innovative approach to develop new security processes and solutions from existing technologies. By collaborating with multiple teams across Cargill this position will raise awareness of the impact that the insider has on our global company. This role will learn about the business needs, the Cargill security technologies in place today and help to create a balanced approach to reducing risk while keeping the business running smoothly.
This position will collaborate with our security leadership, Security tool SMEs, Global Security, Security Operations Center staff, HR and Law departments to develop a roadmap for the technical implementation of security controls that specifically address the Insider threat in Cargill today. Collaborating with ops to management this role can have a lasting impact on Cargill by reducing risk and raising awareness on appropriate use of technology assets.
This role will require technical growth in the use of forensic tool kits as well as all available Cargill security tools. The role will engage with multiple teams to seek out opportunities to harness these tools and develop new security process and procedures. By focusing on the lessons learned by the Forensics and Command Center teams this role will seek to counter those risks with education and implementation of new processes that reduce the risk of the Insider.
Work closely with team to document Insider Threat tactics used to exfiltrate data in a global environment with a highly mobile workforce.
Engage security tools subject matter experts and harness these tools to create additional visibility and new security solutions.
Work with TGRC training and awareness teams to create education options to raise awareness of Cargill policies related to the security and safety of
Cargill data using real-life examples from the Forensics and Electronic Discovery teams.
Work with business relationship managers, employee relations, TGRC and Global Security to develop Insider Threat strategies, processes and procedures.
Gain knowledge of tools and processes used for Forensic collection, analysis and reporting.
Collaborate and support team members within the Forensics Team to address Investigation requests.
Gather requirements and document end-to-end use cases to include but not limited to:
Insider Threat motivations and behaviors.
Consumer technologies available today that can be used to thwart Cargill security solutions.
Cargill technology solutions in place or road mapped for future implementation to help close the gaps for data exfiltration.
Work directly with Global IT Team and other security product owners to develop new solutions:
Enhance offboarding processes with new security options to lock down accounts and data access.
Develop automated reporting solutions for HR, Management and legal teams to review potential threats more effectively.
Implement or enhance alerting and methods for the education of employees about Cargill policies.
Develop and implement documentation and escalation process for repeat offenses.
Develop metrics that illustrate the impact of education and technology solutions on malware events, IP theft event outcomes and overall misuse of assets.
Bachelor's degree in business or information systems or equivalent experience
4-6 years of relevant experience whether in information technology, information security products such as Access Data FTK (most important),
LogRhythm, Symantec DLP, Symantec anti-virus and Tanium.
Strong written and verbal communication skills with an ability to communicate technical details in a clear and understandable manner
Excellent problem solving and interpersonal skills
Must be flexible to work with global teams and working on different time zones
Business fluency in English
Ability to travel globally up to 20%
5 years of professional experience with security investigative technologies
Self-starter, self-motivated, and able to work independently while following the teams mission and vision in a fast-paced operationally focused environment
Non-English language skills (e.g. Chinese, Spanish preferred)
Mobile phone forensic tool proficiency