EY · 20 hours ago
Cyber Triage and Forensic Senior Analyst
Minneapolis, MN
Full-time
Hybrid
Mid, Senior Level
$128K/yr - $240K/yr
7+ years expEY is a globally connected powerhouse of diverse teams committed to building a better working world. The Cyber Triage and Forensic Senior Analyst will be a senior member of the technical team responsible for security incident response, performing digital forensic analysis, and coordinating remediation efforts for security incidents.
AccountingAdviceBusiness IntelligenceConsultingFinancial ServicesProfessional Services
Responsibilities
Investigate, coordinate, bring to resolution, and report on security incidents as they are brought up or identified
Forensically analyze end user systems and servers found to have possible indicators of compromise
Analysis of artifacts collected during a security incident/forensic analysis
Identify security incidents through ‘Hunting’ operations within a SIEM, EDR and other relevant tools
Interface and connect with server owners, system custodians, and IT contacts to pursue security incident response activities, including obtaining access to systems, digital artifact collection, and containment and/or remediation actions
Provide consultation and assessment on perceived security threats
Maintain, manage, improve and update security incident process and protocol documentation
Regularly provide reporting and metrics on case work
Resolution of security incidents by identifying root cause and solutions
Analyze findings in investigative matters, and develop fact based reports
Be on-call to deliver global incident response
Qualification
Required
Bachelors or Masters Degree in Computer Science, Information Systems, Engineering or a related field
7+ years experience in incident response, computer forensics analysis and/or malware reverse engineering
Understanding of security threats, vulnerabilities, and incident response
Understanding of electronic investigation, forensic tools, and methodologies, including: log correlation and analysis, forensically handling electronic data, knowledge of the computer security investigative processes, malware identification and analysis
Be familiar with legalities surrounding electronic discovery and analysis
Experience with EDR and SIEM technologies (i.e. Splunk)
Deep understanding of both Windows and Unix/Linux based operating systems
Resolution of security incidents by identifying root cause and solutions
Analyze findings in investigative matters, and develop fact-based reports
Proven integrity and judgment within a professional environment
Ability to appropriately balance work/personal priorities
Preferred
Hold or be willing to pursue related professional certifications such as GCFE, GCFA or GREM
Background in security incident response in Cloud-based environments, such as Azure
Programming skills in PowerShell, Python and/or C/C++
Understanding of the best security practices for network architecture and server configuration
Benefits
Medical and dental coverage
Pension and 401(k) plans
Paid time off options
Flexible vacation policy
Designated EY Paid Holidays
Winter/Summer breaks
Personal/Family Care
Other leaves of absence
Company
EY is building a better working world by creating new value for clients, people, society, the planet, while building trust in the capital markets.
10001+ employees
H1B Sponsorship
EY has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (10242)
2024 (9877)
2023 (10966)
2022 (9394)
2021 (5652)
2020 (8849)
Funding
Current Stage
Late StageLeadership Team
Jonathan Williamson
Chief Operating Officer
Abhishek Sen
Partner
Recent News
2025-12-24
2025-12-15
2025-12-15
Company data provided by crunchbase