Description
Multiple work locations available, including - Hines, IL; Martinsburg, WV; Washington, DC
1
st
Shift Available
Job Duties
Analyze digital evidence and investigate computer security incidents to derive useful information in support of system/network vulnerability mitigation
Conduct enterprise and individual system(s) endpoint (Windows, Linux, Mac, and
Cloud systems) and network based digital forensic analysis in support of cyber event and incident response and other activities such as insider threat investigations as well as cyber threat hunting
Leverage commercially available and open-source forensic tools to efficiently perform
forensic analysis (EnCase strongly preferred)
Perform static and dynamic file analysis to identify malware characteristics, intent and origin
Conduct malware analysis and provide Malware Analysis Reports
Conduct formal digital forensic investigations and document findings in formal investigation reports
Create and escalate cases via a ticket management system in compliance with established SOPs and guidelines
Provide recommendations for technical event monitoring policies pertaining to indicators and alerts for Security Information and Event Management (SIEM) system, network appliances (firewalls, IDS, etc.)
, cloud services, Email, Data Loss Prevention (CASB), and endpoint (EDR) systems in support of Cyber Defense Forensics
Assist with maintaining forensics lab equipment, while also providing recommendations on how to modernize or enhance the lab capability
Serve as a team of subject matter experts (SMEs) in the preservation of evidence, which includes a deep understanding of proper chain of custody and proper storage, handling, and transmission procedures for various data sets
Assist with drafting, updating, and modernizing SOPs and guidelines as needed
Participation in rotational on-call support as needed
Potential travel limited to about 5%, if needed
Qualifications
Required Education and Experience:Bachelor's degree in technology-related field - equivalent experience may be considered in lieu of a degree
Experience with conducting digital forensic analysis of large enterprise systems
Experience with digital forensics analysis for a Federal Government agency is preferred
Experience with forensics and cyber event analysis tools such as EnCase, Splunk, McAfee, and Microsoft Defender for Endpoint (MDE)
GIAC Certified Forensic Examiner (GCFE) preferred
GIAC Reverse Engineering Malware (GREM) preferred
Service Now ticketing experience
Other Experience:Excellent analytical and problem-solving skills
Strong verbal and written communication skills
Strong time management skills with attention to detail
Strong critical thinking skills
Strong interpersonal and collaborative skills, with the ability to work in a team environment
Ability to communicate effectively to both technical and non-technical audiences
Carter-Lambert Divisions attracts and retains talent of the highest caliber by offering opportunities to work in exciting and challenging environments surrounded by bright minds.
Our employees are our most prized asset and are rewarded with highly competitive compensation and a top-tier benefits package, including:
401(k) with company contribution
Health Insurance
Vision Insurance
Paid Time Off
About Carter-Lambert
Carter-Lambert Divisions offers a mission-focused solutions to clients-facing highly complex IT, digital, cyber security, Logistical, and Construction challenges. Our success is achieved by maintaining an environment of trust where people are encouraged to reach their fullest potential.
Every candidate that applies to Carter-Lambert Divisions brings a unique prospective to the team, and because our diverse teams, we consistently meet our goals and exceed client expectations.
If you consider yourself to be a highly-motivated person with a willingness to learn, we invite you to apply today to join our team
We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity or expression, pregnancy, age, national origin, disability status, genetic information, protected veteran status, or any other characteristic protected by law.
Physical Address: 3825 Leonardtown Rd. Suite 1B
#J-18808-Ljbffr