Western Digital Careers
Join our Talent Network

Senior Cyber Security Investigator

Location: Irvine, CA, United States 
Req ID: 9100001568


Western Digital®


We deliver the possibilities of data.  YOU define what’s possible.

Do you like protecting companies from cyber-attacks? Does digging through network traffic, setting up honey pots, researching threats, and analyzing indicators of compromise sound like fun to you? Then Western Digital would like to speak with you. Western Digital is looking for a passionate and energetic Senior Cyber Security Investigator working directly for the Senior Director of Global Cyber Operations. 
What will you be doing?
As a senior professional in the cyber team you will be a mentor to other members of the team, will work as a subject matter expert for cyber security events and technologies, and you’ll be fully “hands on” in supporting a global IR and cyber defense team. This means you will be focused on identifying anomalies, investigating advanced cyber events, and working with various cyber security technology controls.  You will be required to use your skills and experience to dig into the evidence and details to figure out what happened and how to prevent it in the future.
Furthermore, this position will work directly with the Security Operations Center (SOC) to coordinate response activities, as well as the global help desk and infrastructure teams to manage remediation efforts.  Western Digital is looking for a self-motivated, creative, highly efficient, and widely experienced security practitioner.  Your ability to partner with peers, communicate effectively, stay organized, and demonstrate your high technical skills; are what will help you achieve success. 
Job Details
  • Act as primary investigator for advanced cyber response efforts
  • Work with the SOC to support and respond to cyber events
  • Maintain awareness of the current threat landscape and tactics to defend
  • Participate in the architecture and engineering of security technologies that support the SOC
  • Collaborate with the infrastructure teams to investigate and respond to cyber events
  • Design, update, and maintain standard operating procedures for cyber investigations
  • Conduct advanced analysis of malware, cyber-attack tactics/techniques/procedures, network forensics, host forensics, log correlation, and other higher level incident response techniques
  • Design, document, and implement new procedures and methodologies for cyber security operations
  • Ability to conduct forensic investigations imaging, analysis, chain of custody, documentation, preservation, etc.
  • Bachelor’s degree from accredited 4-year University in Computer Science or equivalent technical area
  • CISSP, EnCE (or similar forensics certification)
  • At least 6 years’ experience in information security and at least 4 years’ incident response and forensics
  • Proven track record for effective communication at all levels including senior and executive leadership
  • Ability to work and manage multiple simultaneous investigations
  • Must work well under pressure, in stressful situations, achieve critical deadlines, maintain confidentiality, and ensure high professionalism and customer service.
  • Possess an in-depth knowledge of IT security and various frameworks (NIST, ISO, ITL, COBIT etc.)
  • Security architecture: infrastructure, network and systems design
  • Work independently without detailed guidance
  • Ability to read, write, and implement IOCs (Stix Taxii, OpenIOC, etc)
  • Knowledge and experience with various Tactics, Techniques, and Procedures (TTPs) used by malicious actors (APT, nation state, organized crime, insider threat, etc)
Technical Proficiencies:
  • Log correlation and analysis (SIEM)
  • Forensic tools (EnCase, FTK, Cellebrite, etc)
  • Advance endpoint protection (FireAmp, Crowdstrike, Cylance, MIR, etc)
  • OSI Model
  • Deceptive controls (honey pots, deceptive networks, honey nets, etc)
  • Vulnerability management / pen testing
  • Threat management
  • Operational maturity models
  • Network security (Firewalls, IDS/IPS, Web-proxy, NGFW, Packet capture, Netflow analysis, etc)
  • DLP
Recommended Skills:
  • Familiarity or experience in software development
  • Scripting
  • Reverse engineering skills are strongly beneficial
  • Experience with legal / litigation support
  • Cyber hunting experience is strongly beneficial



Western Digital Corporation is the world’s largest data storage company with a leading portfolio of HGST, SanDisk, G-Technology and WD brands covering flash and disk-based solutions.  Deployed by the largest and most prominent organizations worldwide, Western Digital solutions are everywhere, touching lives and enabling great value from the data they possess. 


Western Digital is an equal opportunity employer. We are committed to providing equal employment opportunity for all applicants and employees. Western Digital does not unlawfully discriminate and complies with the laws and regulations set forth in the following EEO Is The Law poster: Equal Employment Opportunity Is The Law.


Western Digital participates in the E-Verify program in the US. For more information click here. Este empleador participa in E-Verify.