Information Security Specialist (Hybrid - Chicago, IL)

Our customer is a large United States insurance company that is backed by more than 100 years of experience and provides insurance products and services for businesses and professionals in the United States, Canada, and Europe. Headquartered in Chicago, IL, they have more than 20 US locations.

We are seeking an Information Security Specialist on a contract basis to support their business needs.

The successful candidate will work alongside experienced senior examiners on active investigations, legal collections, and process improvement initiatives. You will be involved in the full lifecycle of forensic work — from intake and collection through analysis, reporting, and case closure — under the guidance of the Director of Digital Forensics & eDiscovery.

This role is well-suited for someone who is precise, professionally curious, and comfortable operating at the intersection of technology and law. Prior hands-on experience with forensic or eDiscovery tooling is a strong advantage; a willingness to learn and grow in a structured, case-driven environment is essential.

This position is based in Chicago, IL, and operates on a hybrid schedule requiring onsite presence 2 to 3 days per week. The nature of certain collections and investigations may occasionally require additional on-site availability on short notice. Candidates must be local to the Chicago.

Responsibilities:

• Perform digital forensic collections across endpoints, mobile devices, cloud platforms, and network storage, following chain of custody procedures
• Support forensic imaging using tools such as FTK, FTK Imager, and Magnet AXIOM, ensuring forensically sound methodologies
• Conduct preliminary triage and processing of evidence, including hash verification, file system analysis, artifact extraction, and timeline creation
• Assist with mobile device collections using Cellebrite, including logical and physical extractions
• Support investigations, including HR cases, insider threats, IP theft, incident response, and compliance-related matters
• Maintain detailed chain of custody documentation and ensure proper handling of all evidence
• Ensure evidence integrity using write-blockers and document hash values throughout handling and transfers
• Support legal hold and eDiscovery processes using tools such as Exterro Fusion and Microsoft Purview
• Execute targeted data collections from Microsoft 365 environments and on-premise systems
• Prepare electronically stored information (ESI) for legal review, including deduplication and formatting
• Track collection progress, custodian acknowledgments, and case milestones
• Perform data integrity checks and quality assurance reviews on collected data
• Document and escalate anomalies or issues encountered during collection and processing
• Maintain audit-ready case files and documentation aligned with retention policies
• Participate in process audits and support continuous improvement of forensic and eDiscovery workflows
• Assist in developing and updating standard operating procedures and documentation
• Support tool validation and testing activities for forensic and eDiscovery tools
• Assist with case intake, documentation, and scope confirmation
• Draft reports, summaries, and status updates under supervision
• Communicate effectively with stakeholders across legal, HR, compliance, and IT teams
• Maintain strict confidentiality and support documentation for legal and regulatory use

Skills and Qualifications:

• 1-3 years of experience or internship exposure in digital forensics, eDiscovery, cybersecurity, IT operations, legal support, or related fields
• Familiarity with forensic and eDiscovery tools such as FTK, Magnet AXIOM, Cellebrite, Exterro, Nuix, or Relativity
• Understanding of Windows and macOS operating systems and file systems such as NTFS, APFS, and FAT
• Basic knowledge of Microsoft 365 platforms, including Exchange, SharePoint, OneDrive, and Teams
• Understanding of forensic principles, including chain of custody, write-blocking, hash verification, and forensic imaging
• Familiarity with eDiscovery concepts, including ESI, legal holds, and the EDRM framework
• Proficiency in Microsoft Office tools, including Word, Excel, and Outlook
• Strong analytical, problem-solving, and organizational skills
• High attention to detail with strong documentation practices
• Ability to manage multiple tasks and work within structured processes
• Strong written and verbal communication skills
• Ability to handle sensitive and confidential information with discretion

Preferred Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, Criminal Justice, Paralegal Studies, Information Systems, or a related field
• Certifications such as EnCE, AccessData ACE, Cellebrite CCPA, GCFE, or Magnet Forensics certifications
• Certifications such as Exterro Fusion Certification, CEDP, ACEDS, or Relativity Certified User
• Certifications such as CompTIA Security+, CySA+, (ISC)² CC, AWS or Azure Fundamentals
• Certifications such as CompTIA A+ or Network+, Paralegal Certificate, Microsoft 365 Fundamentals, or ITIL Foundation
• Experience with case management or ticketing systems

Physical and Professional Competencies:

• Strong attention to detail with the ability to identify discrepancies and ensure accuracy
• High level of confidentiality and discretion when handling sensitive investigations and data
• Strong analytical thinking with the ability to interpret data and reconstruct findings
• Ability to remain professional and composed in high-pressure or time-sensitive situations
• Excellent written communication skills for documentation and reporting
• Adaptability and willingness to learn evolving tools, technologies, and regulations
• Collaborative mindset with strong teamwork and communication skills
• Strong legal and ethical awareness in handling forensic evidence and processes
• Must be able to sit and work at a computer workstation for extended periods consistent with standard office work.
• May occasionally be required to handle physical media, external drives, or devices as part of forensic collection workflows.
• Some overtime or extended hours may be required during active investigations, particularly when aligned with legal deadlines or regulatory timelines.

We offer a competitive salary range for this position. Most candidates who join our team are hired at the median of this range, ensuring fair and equitable compensation based on experience and qualifications.

Contractor benefits are available through our 3rd Party Employer of Record (Available upon completion of waiting period for eligible engagements) Benefits include: Medical, Dental, Vision, 401k.

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.