Job Description

Our world is transforming, and PTC is leading the way. Our software brings the physical and digital worlds together, enabling companies to improve operations, create better products, and empower people in all aspects of their business.


Our people make all the difference in our success. Today, we are a global team of nearly 7,000 and our main objective is to create opportunities for our team members to explore, learn, and grow - all while seeing their ideas come to life and celebrating the differences that make us who we are and the work we do possible.


The

Associate Digital Forensics Analyst

is responsible for handling digital forensic investigations and following established policies and procedures of PTC's Information Security organization. The candidate will be part of the Global Security Operation Centre located at

Pune

and will be reporting to the Information Security Manager. The candidate will help investigate compromised systems, preserve digital evidence, and assist in incident response efforts related to cybercrime, insider threats, compliance violations, and policy enforcement. The ideal candidate will have a foundational understanding of digital forensics, malware analysis, and threat hunting, along with the ability to work effectively in a fast-paced environment to help maintain business continuity and support the integrity of security operations.

Key Responsibilities:

Conduct forensic investigations related to compliance violations, data breaches, and security incidents, following established procedures and ensuring alignment with legal and regulatory requirements. Support forensic acquisition and preliminary analysis of data from endpoints, servers, cloud environments, mobile devices, and other digital media, adhering to data preservation best practices. Recover and examine data from electronic storage devices and assist in dismantling/rebuilding damaged systems to retrieve lost or deleted data as directed. Support the eDiscovery process by assisting with document review and ensuring adherence to the Electronic Discovery Reference Model (EDRM) lifecycle under supervision. Compile and preserve digital evidence while maintaining accurate chain-of-custody documentation to support legal or internal investigations. Draft technical reports, declarations, and evidentiary materials for legal or regulatory purposes, working closely with senior analysts and other stakeholders. Assist in identifying additional systems or networks potentially impacted during cybersecurity incidents and support incident response and containment efforts. Collaborate with Cyber Threat Analysis teams and other stakeholders to correlate forensic findings with IOCs, threat intelligence, and malware indicators. Contribute to root cause analysis (RCA) of security incidents by supporting senior team members in identifying vulnerabilities or process gaps. Maintain awareness of emerging forensic technologies, tools, and malware analysis techniques, applying new knowledge under guidance. Assist in preparing and augmenting incident reports, executive summaries, and technical briefs tailored for various audiences including management and IT teams. Participate in the continuous improvement of forensic playbooks, investigation workflows, and standard operating procedures by providing input and supporting documentation efforts.

Qualifications:

Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field. 2-5 years of experience in digital forensics, cyber incident response, or related InfoSec domain. Proficiency with forensic acquisition and analysis tools (e.g., EnCase, FTK, X-Ways, Autopsy, Volatility). Solid understanding of operating systems (Windows, Linux, macOS), file systems, registry, and memory architecture. Knowledge of evidence handling procedures, legal and regulatory requirements (e.g., GDPR, HIPAA), and chain of custody. Strong analytical, problem-solving, and documentation skills.

Skills:

Industry certifications such as GCFA, GCFE, EnCE, CCE, or CHFI. Experience with SIEM platforms, EDR tools (e.g., CrowdStrike, SentinelOne), and malware analysis. Familiarity with scripting languages (e.g., Python, PowerShell) for automation or triage. Law enforcement or legal case support experience is a plus.
Life at PTC is about more than working with today's most cutting-edge technologies to transform the physical world. It's about showing up as you are and working alongside some of today's most talented industry leaders to transform the world around you.


If you share our passion for problem-solving through innovation, you'll likely become just as passionate about the PTC experience as we are. Are you ready to explore your next career move with us



We respect the privacy rights of individuals and are committed to handling Personal Information responsibly and in accordance with all applicable privacy and data protection laws. Review our Privacy Policy here ."