Logo
QuidelOrtho

Digital Forensics Investigator

QuidelOrtho, San Diego, CA, United States


The Opportunity

QuidelOrtho unites the strengths of Quidel Corporation and Ortho Clinical Diagnostics, creating a world-leading in vitro diagnostics company with award-winning expertise in immunoassay and molecular testing, clinical chemistry and transfusion medicine. We are more than 6,000 strong and do business in over 130 countries, providing answers with fast, accurate and consistent testing where and when they are needed most - home to hospital, lab to clinic.

Our culture puts our team members first and prioritizes actions that support happiness, inspiration and engagement. We strive to build meaningful connections with each other as we believe that employee happiness and business success are linked. Join us in our mission to transform the power of diagnostics into a healthier future for all.

The Role

As we continue to grow as QuidelOrtho, we are seeking an experienced Digital Forensics Investigator to join our dynamic cybersecurity team. The DFI will play a crucial role in supporting cybersecurity incidents, internal investigations, and electronic discovery / litigation matters. This role requires a deep understanding of digital forensics, operating systems, file systems, and network protocols to effectively respond and investigate to security, privacy, policy, and compliance incidents. The DFI will collaborate closely with security stakeholders, legal teams, and business leaders, providing objective and professional analysis to drive informed decision-making. Additionally, the role involves defining policies, standard procedures, and performing the necessary steps to ensure the proper collection, analysis, and archiving of digital artifacts.

This position will be working hybrid out of our San Diego, CA or Raritan, NJ office (2-3 days onsite).

The Responsibilities

  • Evolve QuidelOrtho's Digital Forensics and Investigations program, developing global capabilities roadmap, staffing model and strong operational procedures.
  • Assist and ensure the proper processes are in place for legal holds throughout the company and that processes are followed in a compliant way, including legal hold scoping and associated documentation.
  • Execute information security, technical privacy, as well as any other investigations as requested by QuidelOrtho leadership, bringing together required resources across the firm considering known customer/regulatory deadlines.
  • Perform/oversee the performance of forensic analysis of digital information using standard computer forensics and evidence handling techniques and computer forensics tools.
  • Employ industry-standard forensic tools and techniques to extract, recover, and analyze electronic data while maintaining the integrity and chain of custody.
  • Contribute to the creation and maintenance of effective relationships with local, state and federal law enforcement agencies.
  • Demonstrate professionalism and foster a collaborative environment through a positive and cooperative attitude, maintain confidential nature of relationships and work product.
  • Assist with eDiscovery and Litigation Hold matters across cloud based, mobile and legacy technology environments assuring complete and appropriate compliance using defensible processes and documentation.
  • Participate in a rotating on-call schedule; ability to work on weekends and outside normal business hours as needed.
  • Exhibit strong customer service, consulting and project/task management skills.
  • Prepare all communications to senior leadership regarding all aspects of an investigation.
  • Write detailed reports and summarize findings clearly and concisely.
  • Strong communications skills with the ability to explain technical concepts in layman terms.
  • Perform other work-related duties as assigned.

The Individual

Required:

  • Bachelor's degree in computer science, information systems, engineering or related field.
  • 5+ years of experience in digital forensics, incident response, or a similar role required.
  • Experience using commercial and open-source forensic software (X-Ways, EnCase, KAPE, TSK, FTK, Sleuth Kit, Volatility Framework, etc.).
  • Experience deploying and maintaining commercial enterprise forensic tools.
  • Experience writing investigative reports, including technical components.
  • Experience performing Windows/Unix/Linux forensics and triage, and network forensics to assess compromise and investigations.
  • Analyzing triage collections/artifacts for indicators of compromise and potentially malicious activity.
  • Reviewing logs from host systems and appliances to identify suspicious activities.
  • Collecting forensic disk and memory images from physical and virtual endpoints and servers.
  • Performing forensic analysis of physical systems, virtual machines, network and cloud environments.
  • Direct experience working with large datasets and log analysis tools including but not limited to: SIEM, EDR, Python, PowerShell, etc.
  • Demonstrable knowledge of large enterprise environments, network protocols, network devices, operating systems (Windows, macOS, Linux, etc.), and cloud environments.
  • Experience using Splunk's Search Processing Language (SPL) and Microsoft's Kusto Query Language (KQL).
  • Familiarity with common enterprise scripting languages (PowerShell, Python, Bash, etc.)
  • Ability to travel up to 10-15%.
  • Must be a US Citizen.

The Key Working Relationships

Internal Partners:

  • Internal customers, legal, compliance, privacy and infrastructure teams.

External Partners:

  • Customers and Vendors.

The Work Environment

No strenuous physical activity, though occasional light lifting of files and related materials is required. 30% of time in meetings, working with team, or talking on the phone, 70% of the time at the desk on computer, doing analytical work. Minimal travel required. Travel includes airplane, automobile travel and overnight hotel.

Physical Demands

Typically, 40% of time in meetings; 60% of time at the desk on computer/doing paperwork/ on phone, doing analytical work. Walking, standing, and sitting for long periods of time are routine to accomplish tasks in this role.Specific vision abilities required by this job include close and distance vision and the ability to adjust focus. Ability to travel on short term notice.

Salary Transparency

The salary range for this position takes into account a wide range of factors including education, experience, knowledge, skills, geography, and abilities of the candidate, in addition to internal equity and alignment with market data. At QuidelOrtho, it is not typical for an individual to be hired at or near the top range for their role and compensation decisions are dependent on the facts and circumstances of each case. The salary range for this position is $115,000 to $135,000. QuidelOrtho offers a comprehensive benefits package including medical, dental, vision, life, and disability insurance, along with a 401(k) plan, employee assistance program, Employee Stock Purchase Plan, paid time off (including sick time), and paid Holidays. All benefits are non-contractual, and QuidelOrtho may amend, terminate, or enhance the benefits provided, as it deems appropriate.

Equal Opportunity

QuidelOrtho believes in Equal Opportunity for all and is committed to ensuring all individuals, including individuals with disabilities, have an opportunity to apply for those positions that they are interested in and qualify for without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, age, veteran status, disability, genetic information, or any other protected characteristic. QuidelOrtho is also committed to providing reasonable accommodations to qualified individuals so that an individual can perform the duties. If you are interested in applying for an employment opportunity and require special assistance or an accommodation to apply due to a disability, please contact us at recruiting@quidelortho.com.